Your message dated Thu, 11 Dec 2014 17:19:38 +0000
with message-id <[email protected]>
and subject line Bug#772774: fixed in t1utils 1.38-2
has caused the Debian Bug report #772774,
regarding t1disasm: hangs on a crafted PFB file
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
772774: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772774
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: t1utils
Version: 1.38-1
The attached file makes t1disasm hang forever (or at least for 2
minutes, after which I lost my patience :-P).
This bug was found using American fuzzy lop:
http://lcamtuf.coredump.cx/afl/
-- System Information:
Debian Release: 8.0
APT prefers unstable
APT policy: (990, 'unstable'), (500, 'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)
Versions of packages t1utils depends on:
ii libc6 2.19-13
--
Jakub Wilk
hang.pfb
Description: application/font
--- End Message ---
--- Begin Message ---
Source: t1utils
Source-Version: 1.38-2
We believe that the bug you reported is fixed in the latest version of
t1utils, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Niels Thykier <[email protected]> (supplier of updated t1utils package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 11 Dec 2014 17:58:11 +0100
Source: t1utils
Binary: t1utils
Architecture: source amd64
Version: 1.38-2
Distribution: unstable
Urgency: medium
Maintainer: Niels Thykier <[email protected]>
Changed-By: Niels Thykier <[email protected]>
Description:
t1utils - Collection of simple Type 1 font manipulation programs
Closes: 772774
Changes:
t1utils (1.38-2) unstable; urgency=medium
.
* Apply patch to avoid infinite loop on some fonts files
in t1disasm. Thanks to Jakub Wilk for reporting and the
"American fuzzy lop" tool for creating the crafted font
file. (Closes: #772774)
Checksums-Sha1:
ce6280aff6d3c24eab627f896be612a07c06bf22 1707 t1utils_1.38-2.dsc
0516b792f839bd82a67efb06b3c6e59ee33becf3 6288 t1utils_1.38-2.debian.tar.xz
537cd9fa20d5d465690441d146586931bfe68637 129238 t1utils_1.38-2_amd64.deb
Checksums-Sha256:
b9d6f73d28baafeb3cb86c98cac828b60dd66b6246cc422667fdbbbb40eaed57 1707
t1utils_1.38-2.dsc
09367d1167a02b173eaf783a729b9147f32e3151112a32e6348c21a1def598dc 6288
t1utils_1.38-2.debian.tar.xz
7e43ac05ab8ec181b2f634386b3a69a85c974316b1fafee3f09dd351f42d5db7 129238
t1utils_1.38-2_amd64.deb
Files:
1fff559d8d5d0b3f174e454214911ead 1707 text optional t1utils_1.38-2.dsc
dbdf84fe983262e1222c360db60541ca 6288 text optional
t1utils_1.38-2.debian.tar.xz
29c10a4f9af4d914cff94c1dddb07262 129238 text optional t1utils_1.38-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=+GPy
-----END PGP SIGNATURE-----
--- End Message ---
