[ubuntu/quantal-security] libxfont 1:1.4.5-2ubuntu0.12.10.2 (Accepted)

Marc Deslauriers Wed, 14 May 2014 07:11:55 -0700

libxfont (1:1.4.5-2ubuntu0.12.10.2) quantal-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    font metadata file parsing
    - debian/patches/CVE-2014-0209.patch: check for overflows in
      src/fontfile/dirfile.c, src/fontfile/fontdir.c.
    - CVE-2014-0209
  * SECURITY UPDATE: denial of service and possible code execution via
    xfs font server replies
    - debian/patches/CVE-2014-021x.patch: check lengths and sizes in
      src/fc/fsconvert.c, src/fc/fserve.c.
    - CVE-2014-0210
    - CVE-2014-0211


Date: 2014-05-13 16:36:12.727494+00:00
Changed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
https://launchpad.net/ubuntu/quantal/+source/libxfont/1:1.4.5-2ubuntu0.12.10.2

Sorry, changesfile not available.

-- 
Quantal-changes mailing list
Quantal-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/quantal-changes

[ubuntu/quantal-security] libxfont 1:1.4.5-2ubuntu0.12.10.2 (Accepted)

Reply via email to