Your message dated Sat, 02 May 2009 19:54:28 +0000
with message-id <e1m0li4-0005qm...@ries.debian.org>
and subject line Bug#524925: fixed in freetype 2.2.1-5+etch4
has caused the Debian Bug report #524925,
regarding freetype: multiple integer overflows
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
524925: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524925
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: freetype
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for freetype.
CVE-2009-0946[0]:
| Multiple integer overflows in FreeType 2.3.9 and earlier allow remote
| attackers to execute arbitrary code via vectors related to large
| values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c,
| and (3) cff/cffload.c.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
The upstream patches for this are:
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=79972af4f0485a11dcb19551356c45245749fc5b
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=a18788b14db60ae3673f932249cd02d33a227c4e
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=0a05ba257b6ddd87dacf8d54b626e4b360e0a596
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=0545ec1ca36b27cb928128870a83e5f668980bc5
I can provide test-cases for these bugs in private if you need them.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0946
http://security-tracker.debian.net/tracker/CVE-2009-0946
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgp9UvsnRxepT.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: freetype
Source-Version: 2.2.1-5+etch4
We believe that the bug you reported is fixed in the latest version of
freetype, which is due to be installed in the Debian FTP archive:
freetype2-demos_2.2.1-5+etch4_amd64.deb
to pool/main/f/freetype/freetype2-demos_2.2.1-5+etch4_amd64.deb
freetype_2.2.1-5+etch4.diff.gz
to pool/main/f/freetype/freetype_2.2.1-5+etch4.diff.gz
freetype_2.2.1-5+etch4.dsc
to pool/main/f/freetype/freetype_2.2.1-5+etch4.dsc
libfreetype6-dev_2.2.1-5+etch4_amd64.deb
to pool/main/f/freetype/libfreetype6-dev_2.2.1-5+etch4_amd64.deb
libfreetype6-udeb_2.2.1-5+etch4_amd64.udeb
to pool/main/f/freetype/libfreetype6-udeb_2.2.1-5+etch4_amd64.udeb
libfreetype6_2.2.1-5+etch4_amd64.deb
to pool/main/f/freetype/libfreetype6_2.2.1-5+etch4_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 524...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Nico Golde <n...@debian.org> (supplier of updated freetype package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 29 Apr 2009 14:47:31 +0000
Source: freetype
Binary: freetype2-demos libfreetype6-udeb libfreetype6 libfreetype6-dev
Architecture: source amd64
Version: 2.2.1-5+etch4
Distribution: oldstable-security
Urgency: low
Maintainer: Steve Langasek <vor...@debian.org>
Changed-By: Nico Golde <n...@debian.org>
Description:
freetype2-demos - FreeType 2 demonstration programs
libfreetype6 - FreeType 2 font engine, shared library files
libfreetype6-dev - FreeType 2 font engine, development files
libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb)
Closes: 524925
Changes:
freetype (2.2.1-5+etch4) oldstable-security; urgency=low
.
* Non-maintainer upload by the security team.
* This update fixes various integer overflows in cff/cffload.c,
smooth/ftsmooth.c amd sfnt/ttcmap.c leading to arbitrary code
execution or denial of service via a crafted font file
(CVE-2009-0946; Closes: #524925).
Files:
64611cbb471628359be5e3add390481b 806 libs optional freetype_2.2.1-5+etch4.dsc
355360a6157070ec1beed2a59b566053 35460 libs optional
freetype_2.2.1-5+etch4.diff.gz
abee35456605685cb9c439363f800173 355350 libs optional
libfreetype6_2.2.1-5+etch4_amd64.deb
61b8048d1cbc5275322ed0d730bdbea7 671298 libdevel optional
libfreetype6-dev_2.2.1-5+etch4_amd64.deb
35ca786b9430666664982428ea773053 149832 utils optional
freetype2-demos_2.2.1-5+etch4_amd64.deb
fc8b4e8e3ffe15eeeb7bcfb162e4a9e1 248282 debian-installer extra
libfreetype6-udeb_2.2.1-5+etch4_amd64.udeb
Package-Type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkn4uNAACgkQHYflSXNkfP/6kwCgisDenUyl6eoSID2lcfs4QUuQ
8B0AnRPjXh+fLSTqBFN608elWdj4EV9v
=eRtF
-----END PGP SIGNATURE-----
--- End Message ---
