[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1807 FreeType invalid free() flaw Alias: CVE-2008-1807 https://bugzilla.redhat.com/show_bug.cgi?id=450773 --- Additional Comments From [EMAIL PROTECTED] 2008-06-18 02:56 EST --- Created an attachment (id=309698) --> (https://bugzilla.redhat.com/attachment.cgi?id=309698&action=view) freetype2 security fixes backported to freetype1 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1807 FreeType invalid free() flaw Alias: CVE-2008-1807 https://bugzilla.redhat.com/show_bug.cgi?id=450773 Bug 450773 depends on bug 451212, which changed state. Bug 451212 Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8] https://bugzilla.redhat.com/show_bug.cgi?id=451212 What|Old Value |New Value Status|MODIFIED|CLOSED Resolution||CURRENTRELEASE --- Additional Comments From [EMAIL PROTECTED] 2008-06-18 02:55 EST --- Hi All, I see that an update for this for freetype2 has been released, good! I still need to push the freetype1 builds fixing some of the same issues through bodhi. But I needs some help to know what (and which CVE's) to put in bodhi. I know that not all issues apply to freetype1 due to it not having support for bdf and type1 fonts, still some parts of the patch provided here did apply to freetype1 (and more then just the BCI fix). I'll attach the backported patch here, and hope that some of you can shed some light on this. I cannot find out what to put in the advisory myself, as the parts of the patch that have been backported do not seem to match any of the CVE descriptions. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 451213] CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9] https://bugzilla.redhat.com/show_bug.cgi?id=451213 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 23:15 EST --- freetype-2.3.5-6.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 Bug 450774 depends on bug 451213, which changed state. Bug 451213 Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9] https://bugzilla.redhat.com/show_bug.cgi?id=451213 What|Old Value |New Value Status|MODIFIED|CLOSED Resolution||CURRENTRELEASE --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 23:15 EST --- freetype-2.3.5-4.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 451212] CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8] https://bugzilla.redhat.com/show_bug.cgi?id=451212 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 23:15 EST --- freetype-2.3.5-4.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1807 FreeType invalid free() flaw Alias: CVE-2008-1807 https://bugzilla.redhat.com/show_bug.cgi?id=450773 Bug 450773 depends on bug 451213, which changed state. Bug 451213 Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9] https://bugzilla.redhat.com/show_bug.cgi?id=451213 What|Old Value |New Value Status|MODIFIED|CLOSED Resolution||CURRENTRELEASE --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 23:15 EST --- freetype-2.3.5-4.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 451212] CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8] https://bugzilla.redhat.com/show_bug.cgi?id=451212 [EMAIL PROTECTED] changed: What|Removed |Added Status|MODIFIED|CLOSED Resolution||CURRENTRELEASE Fixed In Version||2.3.5-4.fc8 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 451213] CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9] https://bugzilla.redhat.com/show_bug.cgi?id=451213 [EMAIL PROTECTED] changed: What|Removed |Added Status|MODIFIED|CLOSED Resolution||CURRENTRELEASE Fixed In Version||2.3.5-6.fc9 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 23:15 EST --- freetype-2.3.5-6.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1807 FreeType invalid free() flaw Alias: CVE-2008-1807 https://bugzilla.redhat.com/show_bug.cgi?id=450773 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 23:15 EST --- freetype-2.3.5-6.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 16792] [GTK] Fails to render Japanese/Chinese text with simple path
https://bugs.webkit.org/show_bug.cgi?id=16792 --- Comment #5 from [EMAIL PROTECTED] 2008-06-17 17:15 PDT --- I'm not familiar with the font-related code, but my initial impression of FontFallbackList based on its name and interface suggests that it's a list of FontDatas from which you can pick one that has the glyphs for the string you want to display, by calling FontFallbackList::fontDataForCharacters(). However, it seems that the only time anything is added to the list is when Font::Font() calls FontFallbackList::setPlatformFont(). If FontFallbackList is really a fallback list, then, shouldn't more fonts be added to it at other places? -- Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 13:28 EST --- Built freetype-2.0.3-13.el21 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 13:00 EST --- The patch applied to Fedora packages does include TTF BCI part of the fix, so rebuilds with BCI enabled should be safe. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 12:47 EST --- On the other hand, freetype-freeworld in a popular third-party repository is also affected by the BCI issue, in addition to the issues also affecting the Fedora freetype package. A fixed freetype-freeworld will be built in that repository as soon as possible. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 429527] [ml_IN]: Removal of a glyph from font file
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: [ml_IN]: Removal of a glyph from font file https://bugzilla.redhat.com/show_bug.cgi?id=429527 [EMAIL PROTECTED] changed: What|Removed |Added Flag|qa_ack? |qa_ack+ -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 06:01 EST --- The TTF issue affects TTF virtual machine byte code interpreter (BCI). This interpreter is disabled by default on freetype 2.x (libtruetype) due to a patent issues as described on the upstream web page: http://www.freetype.org/patents.html All Red Hat Enterprise Linux and Fedora freetype 2.x versions have BCI disabled and are not affected by the TTF part of CVE-2008-1808. Only custom rebuilds with BCI enabled may possibly be affected. Freetype 1.x (libttf) does enable BCI by default, but is explicitly disabled in freetype packages on Red Hat Enterprise Linux 3 and 4 and in freetype1 packages in all Fedora versions (via freetype-1.4-disable-ft1-bci.patch). Red Hat Enterprise Linux 5 does not ship freetype 1.x library. Freetype 1.x on Red Hat Enterprise Linux 2.1 is built with BCI enabled. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 05:43 EST --- freetype-2.3.5-4.fc8 has been submitted as an update for Fedora 8 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 451213] CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9] https://bugzilla.redhat.com/show_bug.cgi?id=451213 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 05:44 EST --- freetype-2.3.5-6.fc9 has been submitted as an update for Fedora 9 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 451212] CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8] https://bugzilla.redhat.com/show_bug.cgi?id=451212 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 05:43 EST --- freetype-2.3.5-4.fc8 has been submitted as an update for Fedora 8 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1807 FreeType invalid free() flaw Alias: CVE-2008-1807 https://bugzilla.redhat.com/show_bug.cgi?id=450773 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 05:43 EST --- freetype-2.3.5-4.fc8 has been submitted as an update for Fedora 8 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450774] CVE-2008-1808 FreeType off-by-one flaws
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1808 FreeType off-by-one flaws Alias: CVE-2008-1808 https://bugzilla.redhat.com/show_bug.cgi?id=450774 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 05:44 EST --- freetype-2.3.5-6.fc9 has been submitted as an update for Fedora 9 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2008-1807 FreeType invalid free() flaw Alias: CVE-2008-1807 https://bugzilla.redhat.com/show_bug.cgi?id=450773 --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 05:44 EST --- freetype-2.3.5-6.fc9 has been submitted as an update for Fedora 9 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list
[Bug 395561] [kn_IN] ra + halant + ra is not rendering properly
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: [kn_IN] ra + halant + ra is not rendering properly https://bugzilla.redhat.com/show_bug.cgi?id=395561 [EMAIL PROTECTED] changed: What|Removed |Added Flag|pm_ack?, devel_ack+, qa_ack?|devel_ack- --- Additional Comments From [EMAIL PROTECTED] 2008-06-17 03:21 EST --- Okay thanks - unproposing and reversing devel ack. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug, or are watching someone who is. ___ Fedora-fonts-bugs-list mailing list Fedora-fonts-bugs-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-fonts-bugs-list