Format: 1.8 Date: Thu, 13 Dec 2018 14:39:37 -0500 Source: fontforge Binary: fontforge fontforge-nox fontforge-common libfontforge-dev libfontforge1 libgdraw4 python-fontforge fontforge-dbg Architecture: arm64 Version: 20120731.b-7.1ubuntu0.1 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Mike Salvatore Description: fontforge - font editor fontforge-common - font editor (common files) fontforge-dbg - debugging symbols for fontforge fontforge-nox - font editor - non-X version libfontforge-dev - font editor - runtime library (development files) libfontforge1 - font editor - runtime library libgdraw4 - font editor - runtime graphics and widget library python-fontforge - font editor - Python bindings Changes: fontforge (20120731.b-7.1ubuntu0.1) xenial-security; urgency=medium . * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2017-11568.patch: fix out of bounds read condition and buffer overflow in fontforge/parsettf.c, fontforge/psread.c, fontforge/tottf.c. - CVE-2017-11568 * SECURITY UPDATE: heap-based buffer over-read in readttfcopyrights - debian/patches/CVE-2017-11569-and-2017-11575.patch: fix out of bounds read condition in fontforge/parsettf.c. - CVE-2017-11569 - CVE-2017-11575 * SECURITY UPDATE: stack-based buffer overflow - debian/patches/CVE-2017-11571.patch: fix buffer overflow in fontforge/parsettf.c. - CVE-2017-11571 * SECURITY UPDATE: stack underflow condition in readcfftopdicts - debian/patches/CVE-2017-11572-and-2017-11576.patch: prevent stack uderflow condition in fontforge/parsettf.c. - CVE-2017-11572 - CVE-2017-11576 * SECURITY UPDATE: heap-based buffer overflow in readcffset - debian/patches/CVE-2017-11574.patch: fix buffer condition in fontforge/parsetff.c. - CVE-2017-11574 * SECURITY UPDATE: buffer over-read in getsid - debian/patches/CVE-2017-11577.patch: fix out of bounds read in fontforge/parsettf.c - CVE-2017-11577 Checksums-Sha1: 6190ac11f6a951e699c5993c150d1779ee7b54d5 7216822 fontforge-dbg_20120731.b-7.1ubuntu0.1_arm64.deb 89bd18df21d83da83a6064e53a21ba23fc5e1b75 1062 fontforge-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 09ff478fca9f6ae377a84b91ffc269c5bcdd358c 1136 fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 8d5ee1e4685146947fc96ac5c08e25b4a3590298 8764 fontforge-nox_20120731.b-7.1ubuntu0.1_arm64.deb ec6bf825e25607283f14e8299f47ac3b15335936 831912 fontforge_20120731.b-7.1ubuntu0.1_arm64.deb fe3f9a1b8b604688e56409270bf299fbfc86b74e 992 libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 03c58352595b3bbe59f89a3cbde11b019cca6f41 103430 libfontforge-dev_20120731.b-7.1ubuntu0.1_arm64.deb 2ce72f2cae7358d61e049b88bed3e1fa4b98ec37 976 libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 885faae97fbb4e4538534026a7a4be3905923a0b 1541260 libfontforge1_20120731.b-7.1ubuntu0.1_arm64.deb 0d1cb0e47fc0a31234f3c877d89bef805dfd8635 992 libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb b28294d7ad5d13b6d4d11c7219309b66c78632ea 252718 libgdraw4_20120731.b-7.1ubuntu0.1_arm64.deb 65aacb82dd969dc2e65dcfb365d8b678fe931227 4930 python-fontforge_20120731.b-7.1ubuntu0.1_arm64.deb Checksums-Sha256: bc37dab5f097718dc3fdd7238ecc2bf705452d1742f230923381ebdab42ffcf8 7216822 fontforge-dbg_20120731.b-7.1ubuntu0.1_arm64.deb 10b07fb8b85f7c941ce772cc43646d8bcf43f24f4cab21ec08ce268745dd6f6b 1062 fontforge-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 3541bf62c7d6dc503c79403f7dbae04f85cdaca05fe20b2becc4e9c60549edd8 1136 fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 18a1830791be8d044d3d6b82a6b095ff31aee89dd711f13caa3d2aa6926c3d46 8764 fontforge-nox_20120731.b-7.1ubuntu0.1_arm64.deb 24afb51f15d5f9e358da71363eac98ecedde7cc84c1beef12547af3ee467a81f 831912 fontforge_20120731.b-7.1ubuntu0.1_arm64.deb 027741503e9f5f78986d379c2458357c9cb58bfa1d99ab5e24f930dc6424ccb6 992 libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb e909ae30be14145baed050f7f451e3659bc3956f7333619a3cc0e1c039276122 103430 libfontforge-dev_20120731.b-7.1ubuntu0.1_arm64.deb d5f38b7f301492ea16a9e6583ba3833250b6c95c0d290d2b855460e2594d80b9 976 libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 3c993195f06802caed104c237e3cd479cb6df6b5e586f378824b6d9534d00763 1541260 libfontforge1_20120731.b-7.1ubuntu0.1_arm64.deb ce9fb131942affd528a10ae14ef2a1e00eb46277d03b2572bf23bbf0b05e7875 992 libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 4ba350a806a9380971a1fcfbbcd2d74de7306773a8d48a3c825288dcc16af9a8 252718 libgdraw4_20120731.b-7.1ubuntu0.1_arm64.deb e65f4c229ffb4884995f82d0db28913e6d72ab326aa10e66a09be44cae02c4a5 4930 python-fontforge_20120731.b-7.1ubuntu0.1_arm64.deb Files: aff147976b3e31a6dbf656de83468fed 7216822 debug extra fontforge-dbg_20120731.b-7.1ubuntu0.1_arm64.deb 5b1ed4985810d0f5aa47fc7d9de31820 1062 fonts extra fontforge-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb f9d2c2baa98861770dc869216ffcea71 1136 fonts extra fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 56701267c9d642a11956fc61ea796b21 8764 fonts optional fontforge-nox_20120731.b-7.1ubuntu0.1_arm64.deb 78f6e8183747cee19f50e6fd08cd5d1c 831912 fonts optional fontforge_20120731.b-7.1ubuntu0.1_arm64.deb fe3ae6db8714f00c1658b0b687f01230 992 libdevel extra libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 0b299db143ca1104c46deeab8b200b79 103430 libdevel optional libfontforge-dev_20120731.b-7.1ubuntu0.1_arm64.deb 142ddca89a52656d5bf952a3f2543814 976 libs extra libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 3e9c45e6b9118285f70fc6da8dd6f1e6 1541260 libs optional libfontforge1_20120731.b-7.1ubuntu0.1_arm64.deb 7719fa3015abd8685888f095b4b6c800 992 libs extra libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_arm64.ddeb 472959ec8084256e3f2a5c4c2166e71e 252718 libs optional libgdraw4_20120731.b-7.1ubuntu0.1_arm64.deb 38d4f4c1433be1b09cccd9ff0ca4f707 4930 python optional python-fontforge_20120731.b-7.1ubuntu0.1_arm64.deb Original-Maintainer: Debian Fonts Task Force