libxfont 1:1.4.1-1ubuntu0.3 source package in Ubuntu

Changelog

libxfont (1:1.4.1-1ubuntu0.3) lucid-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    font metadata file parsing
    - debian/patches/CVE-2014-0209.patch: check for overflows in
      src/fontfile/dirfile.c, src/fontfile/fontdir.c.
    - CVE-2014-0209
  * SECURITY UPDATE: denial of service and possible code execution via
    xfs font server replies
    - debian/patches/CVE-2014-021x.patch: check lengths and sizes in
      src/fc/fsconvert.c, src/fc/fserve.c.
    - CVE-2014-0210
    - CVE-2014-0211
 -- Marc Deslauriers <email address hidden>   Tue, 13 May 2014 12:31:20 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2014-05-13
Uploaded to:
Lucid
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
x11
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libxfont_1.4.1.orig.tar.gz 571.7 KiB edb651e083540d89eba87c221b6c293ea73ba6169df01f647f9562edc515d7f7
libxfont_1.4.1-1ubuntu0.3.diff.gz 24.0 KiB 3a8928465df272c4bbe6b560a383ea0995dd79c79543ff8538732b771350a101
libxfont_1.4.1-1ubuntu0.3.dsc 2.1 KiB 5f0cb7e85fa072e4222efce82851354dd12eb2fd42c9d3e1c0412377a9b6a02f

View changes file

Binary packages built by this source

libxfont-dev: No summary available for libxfont-dev in ubuntu lucid.

No description available for libxfont-dev in ubuntu lucid.

libxfont1: No summary available for libxfont1 in ubuntu lucid.

No description available for libxfont1 in ubuntu lucid.

libxfont1-dbg: No summary available for libxfont1-dbg in ubuntu lucid.

No description available for libxfont1-dbg in ubuntu lucid.