[Bug 451213] New: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 9]

bugzilla at redhat.com bugzilla at redhat.com
Fri Jun 13 13:14:12 UTC 2008 

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.




https://bugzilla.redhat.com/show_bug.cgi?id=451213

           Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple
                    freetype vulnerabilities [Fedora 9]
           Product: Fedora
           Version: 9
          Platform: All
               URL: http://fedoraproject.org/wiki/Security/TrackingBugs
        OS/Version: Linux
            Status: NEW
          Severity: low
          Priority: low
         Component: freetype
        AssignedTo: besfahbo at redhat.com
        ReportedBy: thoger at redhat.com
         QAContact: extras-qa at fedoraproject.org
                CC: fedora-fonts-bugs-list at redhat.com


This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in all affected branches.

You should *not* refer to this bug publicly, as it is a private "Fedora Project Contributors" bug.

For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.

	bug #450768: CVE-2008-1806 FreeType PFB integer overflow
	bug #450773: CVE-2008-1807 FreeType invalid free() flaw
	bug #450774: CVE-2008-1808 FreeType off-by-one flaws

When creating an update for the version this this bug is reported against please include the bug IDs of respective bugs filed against "Security Response" product as well as of this bug and let the update system close them. Please note that the update announcement will (and should) contain only references to "Security Response" bugs as long as the tracking bug is restricted to "Fedora Project Contributors".

For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.

More information about the fonts-bugs mailing list