Copied from
ubuntu bionic in
Private PPA for Ubuntu Security Team
by Alex Murray
Changelog
freetype (2.8.1-2ubuntu2.1) bionic-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow via integer truncation in
Load_SBit_Png
- debian/patches-freetype/CVE-2020-15999.patch: Update
src/sfnt/pngshim.c to test and reject invalid bitmap size earlier in
Load_SBit_Png. Based on upstream patch.
- CVE-2020-15999
-- Alex Murray <email address hidden> Tue, 20 Oct 2020 12:49:06 +1030