Ubuntu
t1lib package

[Sync request] Sync t1lib (5.1.0-3) from Debian unstable main

Bug #140665 reported by Michael Bienia
4
Affects Status Importance Assigned to Milestone
t1lib (Ubuntu)
Fix Released
Wishlist
Unassigned

Bug Description

Please sync t1lib (5.1.0-3) from Debian unstable main.

The current package has no Ubuntu changes.
The new package builds cleanly in a gutsy pbuilder.

Thanks.

Changelog:

t1lib (5.1.0-3) unstable; urgency=low

  * Apply patch from Artur R. Czechowski to fix CVE-2007-4033.
    (Closes: #439927)

 -- Torsten Werner <email address hidden> Mon, 17 Sep 2007 23:25:45 +0200

Revision history for this message
Kees Cook (kees) wrote :

ACK. Please sync.

Jamie Strandboge (jdstrand)
Changed in t1lib:
assignee: nobody → jamie-strandboge
assignee: jamie-strandboge → nobody
Revision history for this message
Sebastien Bacher (seb128) wrote :

[Updating] t1lib (5.1.0-2build1 [Ubuntu] < 5.1.0-3 [Debian])
 * Trying to add t1lib...
  - <t1lib_5.1.0-3.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <t1lib_5.1.0.orig.tar.gz: already in distro - downloading from librarian>
  - <t1lib_5.1.0-3.dsc: downloading from http://ftp.debian.org/debian/>
I: t1lib [main] -> libt1-doc_5.1.0-2build1 [main].
I: t1lib [main] -> libt1-dev_5.1.0-2build1 [main].
I: t1lib [main] -> t1lib-bin_5.1.0-2build1 [universe].
I: t1lib [main] -> libt1-5_5.1.0-2build1 [main].

Changed in t1lib:
importance: Undecided → Wishlist
status: New → Fix Released
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

t1lib (5.1.0-2ubuntu0.7.04.1) feisty-security; urgency=low

  * SECURITY UPDATE: improper bounds checking for call to strcat results in
    buffer overflow
  * Added inline patch to lib/t1lib/t1env.c for proper bounds checking
  * References
    CVE-2007-4033
    LP: #140665
  * Modify Maintainer value to match the DebianMaintainerField
    specification.

 -- Jamie Strandboge <email address hidden> Tue, 18 Sep 2007 14:25:28 -0400

Jamie Strandboge (jdstrand)
Changed in t1lib:
status: Fix Released → In Progress
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.