Ubuntu
libxfont package

lp:ubuntu/hardy/libxfont

Hardy (8.04)
hardy

Created by James Westby on 2009-06-27 and last modified on 2009-06-27

Get this branch:: bzr branch lp:ubuntu/hardy/libxfont

Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

18. By Julien Cristau on 2008-01-17: * High urgency upload for security fix.
* Fix a buffer overflow in the PCF font parser (CVE-2008-0006).
* debian/control updates
  + add myself to Uploaders, and remove Branden and Fabio with their
    permission
  + s/^XS-Vcs/Vcs/
  + bump Standards-Version to 3.7.3 (no changes)
  + libxfont1 is Section: libs
  + libxfont-dev and libxfont1-dbg are Section: libdevel
17. By Bryce Harrington on 2008-01-17: * Added patch 100_cve_2008_0006_pcf_font_parser_buffer_overflow.patch:
Verify firstCol < lastCol and firstRow < lastRow to prevent buffer
overflow.
* debian/control: Update maintainer to Ubuntu
16. By Julien Cristau on 2007-09-05: * New upstream release.
* Add libxfont1.shlibs, bump shlibs to >= 1:1.2.9.
15. By Bryce Harrington on 2007-07-18: * New upstream release.
* debian/control:
- Maintainer field updated
* debian/copyright:
- Added packaging copyright
14. By Julien Cristau on 2007-04-11: * Add XS-Vcs-Browser to debian/control.
* New upstream release.
+ drop patch from 1:1.2.2-2, applied upstream.
* Upload to unstable.
13. By Kees Cook on 2007-03-29: * SECURITY UPDATE: BDF font integer overflows.
* Add debian/patches/50_bdf_overflows.patch: upstream fix.
* References
CVE-2007-1351 CVE-2007-1352
12. By Julien Cristau on 2007-02-16: * New upstream release.
* Add XS-Vcs-Git header to debian/control, and drop obsolete CVS information.
* Install the upstream ChangeLog.
11. By Sebastien Bacher on 2007-02-13: * debian/patches/from_git_accept_empty_font_path.patch:
  - patch from git,"fontfile: accept empty (but valid) font paths (bug #3091)
    If a path has a valid fonts.dir or fonts.alias, but does not contain any
    fonts (either fonts.dir specifies zero fonts, or fonts could not be
    loaded), load it as a valid font path anyway."
    (Ubuntu: #2066, #52163, #79566)
10. By Drew Parsons on 2006-09-13: * New upstream version.
  - closes security bug in CID encoded fonts (iDefense CVE-ID
    2006-3739, 2006-3740)
  - applies patches 10_freetype_buffer_overflow.patch, 10_pcf_font.patch
* dbg package has priority extra.
9. By Martin Pitt on 2006-09-11: * SECURITY UPDATE: Root privilege escalation with crafted Type1 CID fonts.
* Add debian/patches/cid-int-overflows.diff:
  - lib/font/Type1/afm.c: Fix integer overflow in CIDAFM(). [CVE-2006-3739]
  - lib/font/Type1/scanfont.c: Fix integer overflow in scan_cidfont().
    [CVE-2006-3740]

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/karmic/libxfont

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntulibxfont package