I sent privately to Werner yesterday, but since the sites are public, I guess it might as well go to the full list.
Our security team pointed me to the analysis at: http://esec-lab.sogeti.com/post/Analysis-of-the-jailbreakme-v3-font-exploit and that Red Hat has issued a security patch consisting of the recent git commits to src/psaux/t1decode.c: https://rhn.redhat.com/errata/RHSA-2011-1085.html http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0226 -- -Alan Coopersmith- alan.coopersm...@oracle.com Oracle Solaris Platform Engineering: X Window System _______________________________________________ Freetype-devel mailing list Freetype-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/freetype-devel