ubuntu/+source/libxfont:applied/ubuntu/xenial-security

Last commit made on 2017-11-29
Get this branch:
git clone -b applied/ubuntu/xenial-security https://git.launchpad.net/ubuntu/+source/libxfont
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-security
Repository:
lp:ubuntu/+source/libxfont

Recent commits

ef83949... by Marc Deslauriers on 2017-11-28

Import patches-applied version 1:1.5.1-1ubuntu0.16.04.4 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 82d8a562ca6c693cb718ee5cf23a08964c2d2fab
Unapplied parent: 1a1d079c94b5f351c94d2ca76e652e543aac6c62

New changelog entries:
  * SECURITY UPDATE: non-privileged arbitrary file access
    - debian/patches/CVE-2017-16611.patch: open files with O_NOFOLLOW in
      src/fontfile/dirfile.c, src/fontfile/fileio.c.
    - CVE-2017-16611

1a1d079... by Marc Deslauriers on 2017-11-28

Import patches-unapplied version 1:1.5.1-1ubuntu0.16.04.4 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 376aabaa0b3683bcf875098f3fc352fe0027c371

New changelog entries:
  * SECURITY UPDATE: non-privileged arbitrary file access
    - debian/patches/CVE-2017-16611.patch: open files with O_NOFOLLOW in
      src/fontfile/dirfile.c, src/fontfile/fileio.c.
    - CVE-2017-16611

82d8a56... by Marc Deslauriers on 2017-10-06

Import patches-applied version 1:1.5.1-1ubuntu0.16.04.3 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 604933f9c8b0ca54016067db55539eda4632dcc6
Unapplied parent: 376aabaa0b3683bcf875098f3fc352fe0027c371

New changelog entries:
  * SECURITY UPDATE: invalid memory read in PatternMatch
    - debian/patches/CVE-2017-13720.patch: check for end of string in
      src/fontfile/fontdir.c.
    - CVE-2017-13720
  * SECURITY UPDATE: DoS or info leak via malformed PCF file
    - debian/patches/CVE-2017-13722.patch: check string boundaries in
      src/bitmap/pcfread.c.
    - CVE-2017-13722

376aaba... by Marc Deslauriers on 2017-10-06

Import patches-unapplied version 1:1.5.1-1ubuntu0.16.04.3 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 7be21e59bbaf825638171e0183fde4ed8d842e97

New changelog entries:
  * SECURITY UPDATE: invalid memory read in PatternMatch
    - debian/patches/CVE-2017-13720.patch: check for end of string in
      src/fontfile/fontdir.c.
    - CVE-2017-13720
  * SECURITY UPDATE: DoS or info leak via malformed PCF file
    - debian/patches/CVE-2017-13722.patch: check string boundaries in
      src/bitmap/pcfread.c.
    - CVE-2017-13722

604933f... by Timo Aaltonen on 2017-08-10

Import patches-applied version 1:1.5.1-1ubuntu0.16.04.2 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 14559046d266b356e0cb1e4a1e501f45d487b53f
Unapplied parent: 7be21e59bbaf825638171e0183fde4ed8d842e97

New changelog entries:
  * Install developer documentation under the correct path. (LP:
    #1709885)

7be21e5... by Timo Aaltonen on 2017-08-10

Import patches-unapplied version 1:1.5.1-1ubuntu0.16.04.2 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 668431cb363b65b092aaefa5523e5b6744bad268

New changelog entries:
  * Install developer documentation under the correct path. (LP:
    #1709885)

1455904... by Timo Aaltonen on 2017-05-13

Import patches-applied version 1:1.5.1-1ubuntu0.16.04.1 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 61d76108927e14308c1270b5b22ac4df2c865510
Unapplied parent: 668431cb363b65b092aaefa5523e5b6744bad268

New changelog entries:
  * Rename libxfont-dev to libxfont1-dev. (LP: #1687981)

668431c... by Timo Aaltonen on 2017-05-13

Import patches-unapplied version 1:1.5.1-1ubuntu0.16.04.1 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 5eac1ae7567e6cbba052fdc29aeb0c19a3e4349a

New changelog entries:
  * Rename libxfont-dev to libxfont1-dev. (LP: #1687981)

61d7610... by Julien Cristau on 2015-03-17

Import patches-applied version 1:1.5.1-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: c51801e73e486af8fdbfce1bc5fe598e09aded01
Unapplied parent: 5eac1ae7567e6cbba052fdc29aeb0c19a3e4349a

New changelog entries:
  * New upstream release
    + bdfReadProperties: property count needs range check [CVE-2015-1802]
    + bdfReadCharacters: bailout if a char's bitmap cannot be read
      [CVE-2015-1803]
    + bdfReadCharacters: ensure metrics fit into xCharInfo struct
      [CVE-2015-1804]

5eac1ae... by Julien Cristau on 2015-03-17

Import patches-unapplied version 1:1.5.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 698a2b7f423756164929c95bfa57245f526af2b9

New changelog entries:
  * New upstream release
    + bdfReadProperties: property count needs range check [CVE-2015-1802]
    + bdfReadCharacters: bailout if a char's bitmap cannot be read
      [CVE-2015-1803]
    + bdfReadCharacters: ensure metrics fit into xCharInfo struct
      [CVE-2015-1804]