[Bug 1097397] New: CVE-2014-0209 libXfont: integer overflow of allocations in font metadata file parsing [fedora-all]

bugzilla at redhat.com bugzilla at redhat.com
Tue May 13 17:44:06 UTC 2014


https://bugzilla.redhat.com/show_bug.cgi?id=1097397

            Bug ID: 1097397
           Summary: CVE-2014-0209 libXfont: integer overflow of
                    allocations in font metadata file parsing [fedora-all]
           Product: Fedora
           Version: 20
         Component: libXfont
          Keywords: Security, SecurityTracking
          Severity: medium
          Priority: medium
          Assignee: sandmann at redhat.com
          Reporter: vdanen at redhat.com
        QA Contact: extras-qa at fedoraproject.org
                CC: fonts-bugs at lists.fedoraproject.org,
                    sandmann at redhat.com
            Blocks: 1096593 (CVE-2014-0209)




This is an automatically created tracking bug!  It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.

For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.

For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs

When creating a Bodhi update request, use the bodhi submission link noted
in the next comment(s).  This will include the bug IDs of this tracking
bug as well as the relevant top-level CVE bugs.

Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.

NOTE: this issue affects multiple supported versions of Fedora. While only
one tracking bug has been filed, please correct all affected versions at
the same time.  If you need to fix the versions independent of each other,
you may clone this bug as appropriate.

[bug automatically created by: add-tracking-bugs]


Referenced Bugs:

https://bugzilla.redhat.com/show_bug.cgi?id=1096593
[Bug 1096593] CVE-2014-0209 libXfont: integer overflow of allocations in
font metadata file parsing
-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=6pFRKGZJJU&a=cc_unsubscribe


More information about the fonts-bugs mailing list