Your message dated Wed, 22 Aug 2007 07:56:30 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#425625: fixed in freetype 2.1.7-8
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: libfreetype6
Version: 2.2.1-5
Severity: grave
Tags: security patch
Justification: user security hole
A vulnerability has been found in freetype. CVE-2007-2754:
"Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier
might allow remote attackers to execute arbitrary code via a crafted TTF image
with a negative n_points value, which leads to an integer overflow and
heap-based buffer overflow."
A patch is at [1].
Please mention the CVE id in the changelog.
[1]
http://cvs.savannah.nongnu.org/viewvc/freetype2/src/truetype/ttgload.c?root=freetype&r1=1.177&r2=1.178
--- End Message ---
--- Begin Message ---
Source: freetype
Source-Version: 2.1.7-8
We believe that the bug you reported is fixed in the latest version of
freetype, which is due to be installed in the Debian FTP archive:
freetype2-demos_2.1.7-8_i386.deb
to pool/main/f/freetype/freetype2-demos_2.1.7-8_i386.deb
freetype_2.1.7-8.diff.gz
to pool/main/f/freetype/freetype_2.1.7-8.diff.gz
freetype_2.1.7-8.dsc
to pool/main/f/freetype/freetype_2.1.7-8.dsc
libfreetype6-dev_2.1.7-8_i386.deb
to pool/main/f/freetype/libfreetype6-dev_2.1.7-8_i386.deb
libfreetype6-udeb_2.1.7-8_i386.udeb
to pool/main/f/freetype/libfreetype6-udeb_2.1.7-8_i386.udeb
libfreetype6_2.1.7-8_i386.deb
to pool/main/f/freetype/libfreetype6_2.1.7-8_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Steve Langasek <[EMAIL PROTECTED]> (supplier of updated freetype package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 09 Jul 2007 01:39:14 -0700
Source: freetype
Binary: freetype2-demos libfreetype6-udeb libfreetype6 libfreetype6-dev
Architecture: source i386
Version: 2.1.7-8
Distribution: oldstable-security
Urgency: high
Maintainer: Steve Langasek <[EMAIL PROTECTED]>
Changed-By: Steve Langasek <[EMAIL PROTECTED]>
Description:
freetype2-demos - FreeType 2 demonstration programs
libfreetype6 - FreeType 2 font engine, shared library files
libfreetype6-dev - FreeType 2 font engine, development files
libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb)
Closes: 425625
Changes:
freetype (2.1.7-8) oldstable-security; urgency=high
.
* debian/patches-freetype/500-CVE-2007-2754_ttgfload.diff: address
CVE-2007-2754, a bug allowing execution of arbitrary code via a crafted
TTF image by way of an integer overflow. Closes: #425625.
Files:
f04967ca8fffb4340fd8ef716d8fbfb5 754 libs optional freetype_2.1.7-8.dsc
d94a3a7e7575ab5c5aa67d5fc630077d 57953 libs optional freetype_2.1.7-8.diff.gz
7abd8cdd3d0b864b0f593eb391e95dc8 364974 libs optional
libfreetype6_2.1.7-8_i386.deb
7e558fc40413ac96d54a6e187619923a 695068 libdevel optional
libfreetype6-dev_2.1.7-8_i386.deb
e6c2ceadaa8a74247d1fe3eb4eead534 63184 utils optional
freetype2-demos_2.1.7-8_i386.deb
df44023a71960bb13e8cbc868a99805c 212968 debian-installer extra
libfreetype6-udeb_2.1.7-8_i386.udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFGk9aLKN6ufymYLloRAkxgAKCLGKlYxwoK0rXVAs2mM17/4dbx9wCdGCxj
frhIiUIHBpdvkXSdcjNvs6w=
=lrXe
-----END PGP SIGNATURE-----
--- End Message ---
