[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
bugzilla at redhat.com
bugzilla at redhat.com
Sat Jun 14 09:27:41 UTC 2008
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: CVE-2008-1807 FreeType invalid free() flaw
Alias: CVE-2008-1807
https://bugzilla.redhat.com/show_bug.cgi?id=450773
------- Additional Comments From j.w.r.degoede at hhs.nl 2008-06-14 05:27 EST -------
(In reply to comment #1)
> attachment 308965 [edit] is the patch extracted from upstream CVS
>
> This patch contains the fixes for CVE-2008-1806, CVE-2008-1807, and
> CVE-2008-1808
Thanks, I've backported the applicable parts to freetype1 (they didn't all apply
as freetype2 supports more fontfile formats then freetype1).
I've build a new freetype1 with these fixes in for F-8 F-9 and devel. I don't
know what to exactly put in bodhi for this with regards too bug references,
CVE's etc. So I could use some help getting this in bodhi. Here are the F-8 and
F-9 builds:
http://koji.fedoraproject.org/koji/buildinfo?buildID=52635
http://koji.fedoraproject.org/koji/buildinfo?buildID=52634
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the Fedora-fonts-bugs-list
mailing list