Ubuntu
freetype package

freetype 2.1.7-2.3ubuntu0.1 source package in Ubuntu

Changelog

freetype (2.1.7-2.3ubuntu0.1) hoary-security; urgency=low

  * SECURITY UPDATE: Arbitrary code execution and DoS with crafted font files.
  * Add debian/patches/401-odd_blue_num-safe_alloc.patch:
    - src/pshinter/pshglob.c: Prevent integer underflow with malformed fonts
      which have an odd number of blue values (these are broken according to
      the specs). [CVE-2006-0747]
    - src/base/ftutil.c: Fail with an 'invalid argument' error on negative
      allocations, just to make double sure. [CVE-2006-2661]
    - Patches taken from upstream CVS.
  * Add debian/patches/402-int-overflows.patch:
    - Various int overflow protections. [CVE-2006-1861, CVE-2006-2493]
    - Patches taken from upstream CVS.
  * Many thanks to Josh Bressers for extracting the patches!

 -- Martin Pitt <email address hidden>   Fri,  2 Jun 2006 15:19:18 +0000

Upload details

Uploaded by:
Martin Pitt
Uploaded to:
Hoary
Original maintainer:
Anthony Fok
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
freetype_2.1.7.orig.tar.gz 1.2 MiB fc07c4064b206e6b94f2177c31ab117e20803847eb19c2de51262faa6a321412
freetype_2.1.7-2.3ubuntu0.1.diff.gz 53.8 KiB ec6366d592147f7d64461cd1d79c6d6400c20586a55328ff712cd5e433389136
freetype_2.1.7-2.3ubuntu0.1.dsc 695 bytes 58bbfc22fd21f548290e10117965a4d430feec25b1355ee5fe091b1281f8d9f9

View changes file

Binary packages built by this source

freetype2-demos: No summary available for freetype2-demos in ubuntu hoary.

No description available for freetype2-demos in ubuntu hoary.

libfreetype6: No summary available for libfreetype6 in ubuntu hoary.

No description available for libfreetype6 in ubuntu hoary.

libfreetype6-dev: No summary available for libfreetype6-dev in ubuntu hoary.

No description available for libfreetype6-dev in ubuntu hoary.

libfreetype6-udeb: No summary available for libfreetype6-udeb in ubuntu hoary.

No description available for libfreetype6-udeb in ubuntu hoary.