freetype 2.1.10-1ubuntu2.1 source package in Ubuntu
Changelog
freetype (2.1.10-1ubuntu2.1) dapper-security; urgency=low * SECURITY UPDATE: Arbitrary code execution and DoS with crafted font files. * Add debian/patches/400-ttkern-loop-variable.patch: - src/sfnt/ttkern.c, tt_face_get_kerning(): Fix inner loop to use a new variable instead of destroying the outer loop variable. - Fixes infinite loop with fonts that don't have a properly sorted kerning sub-table. - Patch taken from upstream CVS. * Add debian/patches/401-odd_blue_num-safe_alloc.patch: - src/pshinter/pshglob.c: Prevent integer underflow with malformed fonts which have an odd number of blue values (these are broken according to the specs). [CVE-2006-0747] - src/base/ftutil.c: Fail with an 'invalid argument' error on negative allocations, just to make double sure. [CVE-2006-2661] - Patches taken from upstream CVS. * Add debian/patches/402-int-overflows.patch: - Various int overflow protections. [CVE-2006-1861, CVE-2006-2493] - Patches taken from upstream CVS. * Many thanks to Josh Bressers for extracting the patches! -- Martin Pitt <email address hidden> Tue, 30 May 2006 17:38:12 +0200
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Dapper
- Original maintainer:
- Will Newton
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
freetype_2.1.10.orig.tar.gz | 1.3 MiB | 615283d9fbc4407d895a32290d5b61acdef81cdff400f7a2479bf903b9fc5086 |
freetype_2.1.10-1ubuntu2.1.diff.gz | 57.2 KiB | 3d366a2093d0bdbf8a8279b235b9e8a2e798007a90c85ef559acd37f2bc7ca07 |
freetype_2.1.10-1ubuntu2.1.dsc | 712 bytes | e98f46647e72edeed67cf87aecf683bb672b39aa7f6cc3d23d1c5c6a84a49846 |
Binary packages built by this source
- freetype2-demos: No summary available for freetype2-demos in ubuntu dapper.
No description available for freetype2-demos in ubuntu dapper.
- libfreetype6: No summary available for libfreetype6 in ubuntu dapper.
No description available for libfreetype6 in ubuntu dapper.
- libfreetype6-dev: No summary available for libfreetype6-dev in ubuntu dapper.
No description available for libfreetype6-dev in ubuntu dapper.
- libfreetype6-udeb: No summary available for libfreetype6-udeb in ubuntu dapper.
No description available for libfreetype6-udeb in ubuntu dapper.