Format: 1.8
Date: Thu, 13 Dec 2018 14:39:37 -0500
Source: fontforge
Binary: fontforge fontforge-nox fontforge-common libfontforge-dev libfontforge1 libgdraw4 python-fontforge fontforge-dbg
Architecture: i386
Version: 20120731.b-7.1ubuntu0.1
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-037.buildd>
Changed-By: Mike Salvatore <mike.salvatore@canonical.com>
Description:
 fontforge  - font editor
 fontforge-common - font editor (common files)
 fontforge-dbg - debugging symbols for fontforge
 fontforge-nox - font editor - non-X version
 libfontforge-dev - font editor - runtime library (development files)
 libfontforge1 - font editor - runtime library
 libgdraw4  - font editor - runtime graphics and widget library
 python-fontforge - font editor - Python bindings
Changes:
 fontforge (20120731.b-7.1ubuntu0.1) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: heap-based buffer over-read
     - debian/patches/CVE-2017-11568.patch: fix out
       of bounds read condition and buffer overflow in
       fontforge/parsettf.c, fontforge/psread.c,
       fontforge/tottf.c.
     - CVE-2017-11568
   * SECURITY UPDATE: heap-based buffer over-read in
     readttfcopyrights
     - debian/patches/CVE-2017-11569-and-2017-11575.patch: fix
       out of bounds read condition in fontforge/parsettf.c.
     - CVE-2017-11569
     - CVE-2017-11575
   * SECURITY UPDATE: stack-based buffer overflow
     - debian/patches/CVE-2017-11571.patch: fix buffer overflow
       in fontforge/parsettf.c.
     - CVE-2017-11571
   * SECURITY UPDATE: stack underflow condition in
     readcfftopdicts
     - debian/patches/CVE-2017-11572-and-2017-11576.patch: prevent
       stack uderflow condition in fontforge/parsettf.c.
     - CVE-2017-11572
     - CVE-2017-11576
   * SECURITY UPDATE: heap-based buffer overflow in readcffset
     - debian/patches/CVE-2017-11574.patch: fix buffer condition
       in fontforge/parsetff.c.
     - CVE-2017-11574
   * SECURITY UPDATE: buffer over-read in getsid
     - debian/patches/CVE-2017-11577.patch: fix out of bounds read
       in fontforge/parsettf.c
     - CVE-2017-11577
Checksums-Sha1:
 dd5775cb3cceb5147a25086102e1e41bdfb8e3b5 6462806 fontforge-dbg_20120731.b-7.1ubuntu0.1_i386.deb
 10b1052272d9a3060c0b58e76e270325f759cb26 1060 fontforge-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 e2b30f6ee6a6915405f9d2d72b7d1e4dca2e8131 1138 fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 7024f1b84b207f4edab5d8c7f8feb30fa342b427 8884 fontforge-nox_20120731.b-7.1ubuntu0.1_i386.deb
 245294686038adf2af354e3720e7b29acb7ddca1 947366 fontforge_20120731.b-7.1ubuntu0.1_i386.deb
 bdf6698faff85146ea052493c6995f686c79bbc6 994 libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 64b29ddff6f0dd1df12d43b605b4de9fbe5a4f52 103284 libfontforge-dev_20120731.b-7.1ubuntu0.1_i386.deb
 fb9288dffe3015b85db952a1863338623a3f07d2 978 libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 e6a7188fd497ba6d7acd6768a0f07e74910283c9 1893864 libfontforge1_20120731.b-7.1ubuntu0.1_i386.deb
 220da339a9556ca3a2533025f3f59dfecab95755 994 libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 bf9a75f81c8ec8e63e1814e4b826285307f400ed 325404 libgdraw4_20120731.b-7.1ubuntu0.1_i386.deb
 d31c4e448b3c4d02a81ebe005c4b9c9606261147 4830 python-fontforge_20120731.b-7.1ubuntu0.1_i386.deb
Checksums-Sha256:
 4cddd868f4e5920a5a6793cfb33a3e5d18be0d3701821f148bd3d1ad4bd8f745 6462806 fontforge-dbg_20120731.b-7.1ubuntu0.1_i386.deb
 796742ba3bb5215e2b005e4fae04e294b6c59a29e8be2a9bf505d3b4e68193a2 1060 fontforge-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 c83f66e6832d2fbba8a26446444fefaaf9a214c5345545f36a30c9a709c53d50 1138 fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 99b2e26b0117def2c713542b3ac8ef19eac1883bf1d2aa7e8c24663bc5077c3c 8884 fontforge-nox_20120731.b-7.1ubuntu0.1_i386.deb
 816028f98312056bdcae6adb7c5ac0c28713ee3e9773e36d2098941ee1a7b111 947366 fontforge_20120731.b-7.1ubuntu0.1_i386.deb
 4d453442df171ac49ccc5aa3cc20acb98a53509663411967f4d383b6d4de4b21 994 libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 b7042d0577922ab97963aad53620ba9a46204b50cd92015fdbc4a80901ba4dbb 103284 libfontforge-dev_20120731.b-7.1ubuntu0.1_i386.deb
 d69868b7fb0aa1094823c85ed249d366232cc04ba2f7116330905d9571858953 978 libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 d402d77290db6895478e91a958410e26478c74493b81dad0d7af59841bef7f27 1893864 libfontforge1_20120731.b-7.1ubuntu0.1_i386.deb
 002e5c5625a966cadab61ec63380d0958a522aababff43ce9fe223883c9ce40a 994 libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 d80e262d44f6f9c107460c11c8e4812a7657654983e8994c32eedaeac5559b9f 325404 libgdraw4_20120731.b-7.1ubuntu0.1_i386.deb
 8325a62f3577e7d3517cb48960700d86189df77affd49bbfd9c5c30d0394c490 4830 python-fontforge_20120731.b-7.1ubuntu0.1_i386.deb
Files:
 bd98920975ecd80caeb8737875dbdf59 6462806 debug extra fontforge-dbg_20120731.b-7.1ubuntu0.1_i386.deb
 d131a78dc95e2985a9c14a61e50a17b0 1060 fonts extra fontforge-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 8a952008c7fbf5e10f08ed361d5c9c39 1138 fonts extra fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 cae239baf907c2e00bcc759e81d39953 8884 fonts optional fontforge-nox_20120731.b-7.1ubuntu0.1_i386.deb
 80d94cf5b0df731af3e940d1ce261d33 947366 fonts optional fontforge_20120731.b-7.1ubuntu0.1_i386.deb
 d578f7941294cae51c148c397b139d7a 994 libdevel extra libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 f477c35cc7b650c7871716f2b640afe7 103284 libdevel optional libfontforge-dev_20120731.b-7.1ubuntu0.1_i386.deb
 7ba41e41041b21cd28a34749bd319389 978 libs extra libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 7d56ffc299ce8eb526e93965217db3f7 1893864 libs optional libfontforge1_20120731.b-7.1ubuntu0.1_i386.deb
 6a44f0de7444009baa6be23fbda6b2df 994 libs extra libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_i386.ddeb
 340c1fe931441ca6af47ded9e591f8c3 325404 libs optional libgdraw4_20120731.b-7.1ubuntu0.1_i386.deb
 c8472674168bd8f2b7bbafefe3756649 4830 python optional python-fontforge_20120731.b-7.1ubuntu0.1_i386.deb
Original-Maintainer: Debian Fonts Task Force <pkg-fonts-devel@lists.alioth.debian.org>