Publishing details
Changelog
libxfont (1:1.4.7-1ubuntu0.4) trusty-security; urgency=medium
* SECURITY UPDATE: non-privileged arbitrary file access
- debian/patches/CVE-2017-16611-pre.patch: set close-on-exec for font
file I/O in src/fontfile/fileio.c, src/fontfile/filewr.c.
- debian/patches/CVE-2017-16611.patch: open files with O_NOFOLLOW in
src/fontfile/dirfile.c, src/fontfile/fileio.c.
- CVE-2017-16611
-- Marc Deslauriers <email address hidden> Wed, 29 Nov 2017 09:48:10 -0500
Builds
Built packages
-
libxfont-dev
X11 font rasterisation library (development headers)
-
libxfont-dev-dbgsym
debug symbols for package libxfont-dev
-
libxfont1
X11 font rasterisation library
-
libxfont1-dbg
X11 font rasterisation library (debug package)
-
libxfont1-dbgsym
debug symbols for package libxfont1
-
libxfont1-udeb
X11 font rasterisation library
-
libxfont1-udeb-dbgsym
debug symbols for package libxfont1-udeb
Package files