[Bug 450773] CVE-2008-1807 FreeType invalid free() flaw
bugzilla at redhat.com
bugzilla at redhat.com
Wed Jun 18 06:55:29 UTC 2008
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: CVE-2008-1807 FreeType invalid free() flaw
Alias: CVE-2008-1807
https://bugzilla.redhat.com/show_bug.cgi?id=450773
Bug 450773 depends on bug 451212, which changed state.
Bug 451212 Summary: CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 Multiple freetype vulnerabilities [Fedora 8]
https://bugzilla.redhat.com/show_bug.cgi?id=451212
What |Old Value |New Value
----------------------------------------------------------------------------
Status|MODIFIED |CLOSED
Resolution| |CURRENTRELEASE
------- Additional Comments From j.w.r.degoede at hhs.nl 2008-06-18 02:55 EST -------
Hi All,
I see that an update for this for freetype2 has been released, good! I still
need to push the freetype1 builds fixing some of the same issues through bodhi.
But I needs some help to know what (and which CVE's) to put in bodhi.
I know that not all issues apply to freetype1 due to it not having support for
bdf and type1 fonts, still some parts of the patch provided here did apply to
freetype1 (and more then just the BCI fix).
I'll attach the backported patch here, and hope that some of you can shed some
light on this. I cannot find out what to put in the advisory myself, as the
parts of the patch that have been backported do not seem to match any of the CVE
descriptions.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the fonts-bugs
mailing list