libxfont1 1:1.5.2-4ubuntu0.1 source package in Ubuntu

Changelog

libxfont1 (1:1.5.2-4ubuntu0.1) zesty-security; urgency=medium

  * SECURITY UPDATE: invalid memory read in PatternMatch
    - debian/patches/CVE-2017-13720.patch: check for end of string in
      src/fontfile/fontdir.c.
    - CVE-2017-13720
  * SECURITY UPDATE: DoS or info leak via malformed PCF file
    - debian/patches/CVE-2017-13722.patch: check string boundaries in
      src/bitmap/pcfread.c.
    - CVE-2017-13722

 -- Marc Deslauriers <email address hidden>  Fri, 06 Oct 2017 11:46:56 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2017-10-06
Uploaded to:
Zesty
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
x11
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libxfont1_1.5.2.orig.tar.gz 641.0 KiB a7350c75171d03d06ae0d623e42240356d6d3e1ac7dfe606639bf20f0d653c93
libxfont1_1.5.2-4ubuntu0.1.diff.gz 16.7 KiB f307ba37a12b6f0db54839cff6c42f8c2e46e4782bc096dda7ac25f5a5e327be
libxfont1_1.5.2-4ubuntu0.1.dsc 2.2 KiB 65b3578fd4c53caac3db143a34800e3dccdddd875a2264aaf96fcf1e3cf80b71

View changes file

Binary packages built by this source

libxfont1: No summary available for libxfont1 in ubuntu zesty.

No description available for libxfont1 in ubuntu zesty.

libxfont1-dbgsym: No summary available for libxfont1-dbgsym in ubuntu zesty.

No description available for libxfont1-dbgsym in ubuntu zesty.

libxfont1-dev: No summary available for libxfont1-dev in ubuntu zesty.

No description available for libxfont1-dev in ubuntu zesty.