https://bugzilla.redhat.com/show_bug.cgi?id=1203718 --- Comment #1 from Martin Prpic <mprpic(a)redhat.com&gt; --- Created libXfont tracking bugs for this issue: Affects: fedora-all [bug 1203720] -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=QMigIe7Cn5&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 Bug 1203718 depends on bug 1203720, which changed state. Bug 1203720 Summary: CVE-2015-1804 CVE-2015-1802 CVE-2015-1803 libXfont: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1203720 What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Resolution|--- |ERRATA -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=XhKHTLRNtW&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 Taylor Frazier <tfrazier(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |tfrazier(a)redhat.com -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=5r1ZrJTBH4&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 Stefan Cornelius <scorneli(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=low,public=20150317, |impact=low,public=20150317, |reported=20150318,source=in |reported=20150318,source=in |ternet,cvss2=1.9/AV:L/AC:M/ |ternet,cvss2=1.9/AV:L/AC:M/ |Au:N/C:N/I:N/A:P,rhel-5/lib |Au:N/C:N/I:N/A:P,rhel-5/lib |Xfont=affected,rhel-6/libXf |Xfont=affected,rhel-6/libXf |ont=affected,rhel-7/libXfon |ont=affected,rhel-7/libXfon |t=affected,fedora-all/libXf |t=affected,fedora-all/libXf |ont=affected |ont=affected,cwe=CWE-252->C | |WE-391->CWE-476 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=QkqEaLjLBY&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 Stefan Cornelius <scorneli(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1258892 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=QCAm9ls8FA&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 Stefan Cornelius <scorneli(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1258894 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=oOcs1RV48t&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 --- Comment #4 from errata-xmlrpc <errata-xmlrpc(a)redhat.com&gt; --- This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Red Hat Enterprise Linux 6 Via RHSA-2015:1708 https://rhn.redhat.com/errata/RHSA-2015-1708.html -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=OUbfYmeGY3&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 Matt Goldman <magoldma(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |magoldma(a)redhat.com --- Comment #6 from Matt Goldman <magoldma(a)redhat.com&gt; --- Dapeng, Yes, from the whiteboard RHEL 5 is affected: rhel-5/libXfont=affected However, RHEL 5 has entered Production Phase 3 as of January 31, 2014. As per our errata policy: "During the Production 3 Phase, Critical impact Security Advisories (RHSAs) and selected Urgent Priority Bug Fix Advisories (RHBAs) may be released as they become available." Red Hat Enterprise Linux Life Cycle https://access.redhat.com/support/policy/updates/errata#Production_3_Phase This means that Red Hat will not be addressing Low, Moderate, or Important impact CVE's in relation to RHEL 5. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=EDqUeh1iQs&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

https://bugzilla.redhat.com/show_bug.cgi?id=1203718 --- Comment #8 from Matt Goldman <magoldma(a)redhat.com&gt; --- Dapeng, Correct. Likely, this will not be fixed in RHEL 5. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=zGrpDYr1qF&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org