Format: 1.8 Date: Thu, 13 Dec 2018 14:39:37 -0500 Source: fontforge Binary: fontforge fontforge-nox fontforge-common libfontforge-dev libfontforge1 libgdraw4 python-fontforge fontforge-dbg Architecture: s390x Version: 20120731.b-7.1ubuntu0.1 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Mike Salvatore Description: fontforge - font editor fontforge-common - font editor (common files) fontforge-dbg - debugging symbols for fontforge fontforge-nox - font editor - non-X version libfontforge-dev - font editor - runtime library (development files) libfontforge1 - font editor - runtime library libgdraw4 - font editor - runtime graphics and widget library python-fontforge - font editor - Python bindings Changes: fontforge (20120731.b-7.1ubuntu0.1) xenial-security; urgency=medium . * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2017-11568.patch: fix out of bounds read condition and buffer overflow in fontforge/parsettf.c, fontforge/psread.c, fontforge/tottf.c. - CVE-2017-11568 * SECURITY UPDATE: heap-based buffer over-read in readttfcopyrights - debian/patches/CVE-2017-11569-and-2017-11575.patch: fix out of bounds read condition in fontforge/parsettf.c. - CVE-2017-11569 - CVE-2017-11575 * SECURITY UPDATE: stack-based buffer overflow - debian/patches/CVE-2017-11571.patch: fix buffer overflow in fontforge/parsettf.c. - CVE-2017-11571 * SECURITY UPDATE: stack underflow condition in readcfftopdicts - debian/patches/CVE-2017-11572-and-2017-11576.patch: prevent stack uderflow condition in fontforge/parsettf.c. - CVE-2017-11572 - CVE-2017-11576 * SECURITY UPDATE: heap-based buffer overflow in readcffset - debian/patches/CVE-2017-11574.patch: fix buffer condition in fontforge/parsetff.c. - CVE-2017-11574 * SECURITY UPDATE: buffer over-read in getsid - debian/patches/CVE-2017-11577.patch: fix out of bounds read in fontforge/parsettf.c - CVE-2017-11577 Checksums-Sha1: 9abc1df9beefd46e3c006107e8ce5e302ed3240e 7206340 fontforge-dbg_20120731.b-7.1ubuntu0.1_s390x.deb 6f45ebb56bd890c5e16e144c88122cc8acf6fc18 1060 fontforge-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb f1ad599be5039280e5ec8099b7b4fbc1ca0c5c19 1138 fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 5061033afbd4132223ceaeb3291314c95568ce82 8884 fontforge-nox_20120731.b-7.1ubuntu0.1_s390x.deb b263822dec45de2a3e6237be61fdb451a54e145a 892242 fontforge_20120731.b-7.1ubuntu0.1_s390x.deb 243ced3b852f0c83752bf3368868d5b827a48a9a 994 libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 45c97dd2a8439527823c495a57db08b94bbcc368 103202 libfontforge-dev_20120731.b-7.1ubuntu0.1_s390x.deb 682c03273bc4af86ec8606bacaf9a3d84e25d956 980 libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 3cb423f02165db473dd81591de27ef5cc4200ff2 1707166 libfontforge1_20120731.b-7.1ubuntu0.1_s390x.deb d47e08d2c6a2026098f67d13ef7f128d994a7c2b 998 libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 1fca5ebcfaf43f570a37aaac0f045519cf2e3491 291818 libgdraw4_20120731.b-7.1ubuntu0.1_s390x.deb 4d080330d816b90536242946124195bcc8b34d9a 4790 python-fontforge_20120731.b-7.1ubuntu0.1_s390x.deb Checksums-Sha256: 92ccdbc607f65a0dc3b3dcd45cac0ffd99ed1864495d95a2cbf30b22add07198 7206340 fontforge-dbg_20120731.b-7.1ubuntu0.1_s390x.deb 162b5159db6a76a70c6bd3c46c45c87257c35ac57ac44ea21433aed9186bf781 1060 fontforge-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 6998bceade8f32859f7a2f5f1b5ddd525a7dafabc4c9b65b42de0490357c53e0 1138 fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb a5625f5a559537c999cc4a44506bce9ba389caec4e24e29bbf2ea845cb870e6c 8884 fontforge-nox_20120731.b-7.1ubuntu0.1_s390x.deb c1c919079b5a198a060e1571e65c1c8505a58670a07b87b3f0cc4dba438794ae 892242 fontforge_20120731.b-7.1ubuntu0.1_s390x.deb 16ecb324cf8a7d53853b0c3e957f7ae50f6ac5e42380e7ee4d0b7b6f9625b99c 994 libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb baa5a5cca8775dc02d6876b2ff6107c701b64b3fa9fd8197392adf3097b4f6a0 103202 libfontforge-dev_20120731.b-7.1ubuntu0.1_s390x.deb 7f5c7cfc071e6da7450594d94a4f1676efbd434386a732b185822e60d0cefac0 980 libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb a47b806b13026ed91b3c434e9ce507ca999eae2015d629233eb7dcc75ddc7cdf 1707166 libfontforge1_20120731.b-7.1ubuntu0.1_s390x.deb 1ab29203d631ee2c308f6ff39f636a310d51d1d914bec0863a844d3c6f1864d9 998 libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 09d5193f90ba372a1cc83ee19d701a783a5978e46f86a2c5c5c662c3382bf479 291818 libgdraw4_20120731.b-7.1ubuntu0.1_s390x.deb 7b9e664852925af488fbdc44e8c807267d28f5c01c32a60b4ffa1b60492ee2f9 4790 python-fontforge_20120731.b-7.1ubuntu0.1_s390x.deb Files: 66c5a508ad8424e62e9fb5ac209b6753 7206340 debug extra fontforge-dbg_20120731.b-7.1ubuntu0.1_s390x.deb 3d7c314eddcae74d0f3b978d244abeb9 1060 fonts extra fontforge-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 8b813b79580ea661f1eb8f6bf891b516 1138 fonts extra fontforge-nox-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb a89ef62ed0c15131bfb12e7853b9ab9a 8884 fonts optional fontforge-nox_20120731.b-7.1ubuntu0.1_s390x.deb 839beb864355890f160fce639f335589 892242 fonts optional fontforge_20120731.b-7.1ubuntu0.1_s390x.deb 911f7f171b7bb0739e305576047af113 994 libdevel extra libfontforge-dev-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 8671a10d3c598e84f046870460035164 103202 libdevel optional libfontforge-dev_20120731.b-7.1ubuntu0.1_s390x.deb 3d3df648a2458dcab18387cf47389986 980 libs extra libfontforge1-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb 6ba6d3397ea19e577dcab60fc6774287 1707166 libs optional libfontforge1_20120731.b-7.1ubuntu0.1_s390x.deb 412e5fade4bb8cadf1c0397143899d15 998 libs extra libgdraw4-dbgsym_20120731.b-7.1ubuntu0.1_s390x.ddeb d3643f1bf2dc00c04bea6f0721ca0c82 291818 libs optional libgdraw4_20120731.b-7.1ubuntu0.1_s390x.deb bf9f0dbb4afe3dda48e7baace81e7fac 4790 python optional python-fontforge_20120731.b-7.1ubuntu0.1_s390x.deb Original-Maintainer: Debian Fonts Task Force