This bug was fixed in the package pango1.0 - 1.28.2-0ubuntu1.1 --------------- pango1.0 (1.28.2-0ubuntu1.1) maverick-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via crafted font file (LP: #696616) - debian/patches/20_CVE-2011-0020.patch: check for overflow in pango/pangoft2-render.c. - CVE-2011-0020 * SECURITY UPDATE: denial of service and possible code execution via unchecked realloc failures - debian/patches/21_CVE-2011-0064.patch: check for realloc failures in pango/opentype/hb-buffer.*, pango/opentype/hb-buffer-private.h. - CVE-2011-0064 -- Marc Deslauriers <marc.deslauri...@ubuntu.com> Tue, 01 Mar 2011 09:35:52 -0500 ** Changed in: pango1.0 (Ubuntu) Status: Fix Committed => Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-0064 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/696616 Title: Heap corruption in font parsing with FreeType2 backend -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs