Ubuntu
freetype package

Branches for Karmic

Name Status Last Modified Last Commit
lp://staging/ubuntu/karmic/freetype 2 Mature 2009-12-05 19:07:42 UTC
24. * Pass proper --host/--build args to ...

Author: Steve Langasek
Revision Date: 2009-06-01 04:37:19 UTC

* Pass proper --host/--build args to ./configure, to support
  cross-building. Closes: #465292.
* clean up a number of unused variables in debian/rules; maybe someday
  we'll get this package to converge on debhelper 7... :)
* Fix the doc-base section for libfreetype6-dev. Closes: #315845.
* Remove one final reference to /usr/X11R6 in debian/rules.
* Drop incorrect Replaces: freetype0, freetype1
* Add debian/README.source, documenting the madness that is this source
  package.
* Standards-Version to 3.8.0.
* Fix multiple integer overflows leading to arbitrary code execution
  or DoS (CVE-2009-0946; Closes: #524925). Thanks to Nico Golde for the
  NMU.
lp://staging/ubuntu/karmic-security/freetype bug 2 Mature 2010-11-02 14:54:40 UTC
27. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2010-11-02 14:54:40 UTC

* SECURITY UPDATE: denial of service and possible arbitrary code
  execution via libXft overflow.
  - debian/patches/CVE-2010-3311.patch: correctly validate position in
    src/base/ftstream.c.
  - CVE-2010-3311
* SECURITY UPDATE: denial of service and possible code execution via
  improper error handling of SHZ bytecode instruction
  - debian/patches/CVE-2010-3814.patch: add bounds check to
    src/truetype/ttinterp.c.
  - CVE-2010-3814
* SECURITY UPDATE: denial of service and possible code execution via
  TrueType GX font
  - debian/patches/CVE-2010-3855.patch: add bounds checks to
    src/truetype/ttgxvar.c.
  - CVE-2010-3855
lp://staging/ubuntu/karmic-updates/freetype 2 Mature 2010-11-02 14:54:40 UTC
27. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2010-11-02 14:54:40 UTC

* SECURITY UPDATE: denial of service and possible arbitrary code
  execution via libXft overflow.
  - debian/patches/CVE-2010-3311.patch: correctly validate position in
    src/base/ftstream.c.
  - CVE-2010-3311
* SECURITY UPDATE: denial of service and possible code execution via
  improper error handling of SHZ bytecode instruction
  - debian/patches/CVE-2010-3814.patch: add bounds check to
    src/truetype/ttinterp.c.
  - CVE-2010-3814
* SECURITY UPDATE: denial of service and possible code execution via
  TrueType GX font
  - debian/patches/CVE-2010-3855.patch: add bounds checks to
    src/truetype/ttgxvar.c.
  - CVE-2010-3855
13 of 3 results FirstPreviousNextLast