Ubuntu
libxfont package

lp:ubuntu/gutsy-updates/libxfont

Gutsy (7.10)
gutsy-updates

Created by James Westby on 2009-06-27 and last modified on 2009-06-27

Get this branch:: bzr branch lp:ubuntu/gutsy-updates/libxfont

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

16. By Kees Cook on 2008-01-17: * SECURITY UPDATE: overflow in PCF font handling.
* Added fix_CVE-2008-0006.patch: backported from upstream commit
(b76df66d2c507898472bba0f9986ef5700029a36)
15. By Bryce Harrington on 2007-07-18: * New upstream release.
* debian/control:
- Maintainer field updated
* debian/copyright:
- Added packaging copyright
14. By Julien Cristau on 2007-04-11: * Add XS-Vcs-Browser to debian/control.
* New upstream release.
+ drop patch from 1:1.2.2-2, applied upstream.
* Upload to unstable.
13. By Kees Cook on 2007-03-29: * SECURITY UPDATE: BDF font integer overflows.
* Add debian/patches/50_bdf_overflows.patch: upstream fix.
* References
CVE-2007-1351 CVE-2007-1352
12. By Julien Cristau on 2007-02-16: * New upstream release.
* Add XS-Vcs-Git header to debian/control, and drop obsolete CVS information.
* Install the upstream ChangeLog.
11. By Sebastien Bacher on 2007-02-13: * debian/patches/from_git_accept_empty_font_path.patch:
  - patch from git,"fontfile: accept empty (but valid) font paths (bug #3091)
    If a path has a valid fonts.dir or fonts.alias, but does not contain any
    fonts (either fonts.dir specifies zero fonts, or fonts could not be
    loaded), load it as a valid font path anyway."
    (Ubuntu: #2066, #52163, #79566)
10. By Drew Parsons on 2006-09-13: * New upstream version.
  - closes security bug in CID encoded fonts (iDefense CVE-ID
    2006-3739, 2006-3740)
  - applies patches 10_freetype_buffer_overflow.patch, 10_pcf_font.patch
* dbg package has priority extra.
9. By Martin Pitt on 2006-09-11: * SECURITY UPDATE: Root privilege escalation with crafted Type1 CID fonts.
* Add debian/patches/cid-int-overflows.diff:
  - lib/font/Type1/afm.c: Fix integer overflow in CIDAFM(). [CVE-2006-3739]
  - lib/font/Type1/scanfont.c: Fix integer overflow in scan_cidfont().
    [CVE-2006-3740]
8. By Martin Pitt on 2006-09-06: * SECURITY UPDATE: DoS (X server crash) and possible root privilege escalation.
* Add debian/patches/pcf-int-overflow.diff:
  - src/bitmap/pcfread.c: Check for integer overflows when parsing PCF font
    files to prevent exploitable buffer overflow.
  - Patch taken from upstream git:
    http://gitweb.freedesktop.org/?p=xorg/lib/libXfont.git;a=commit;h=8d171fe61e564d8ed8f75034d4191062cecf190b
* CVE-2006-3467
7. By Rodrigo Parra Novo <email address hidden> on 2006-07-19: * New Upstream version
* Dropped (empty) patch directory
* Re-Dropped libfontcache.so.0 from libxfont1.install

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/karmic/libxfont

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntulibxfont package