Hi Paul I noticed you backported freetype for the last version. There was a update via t-p-u for Wheezy: freetype (2.4.9-1.1) unstable; urgency=high * Non-maintainer upload. Upload ACKed by Steve Langasek <vorlon@debian.org> on #debian-devel. * Add savannah-bug-37905.patch patch [SECURITY] CVE-2012-5668: NULL Pointer Dereference in bdf_free_font. (Closes: #696691) * Add savannah-bug-37906.patch patch [SECURITY] CVE-2012-5669: Out-of-bounds read in _bdf_parse_glyphs. (Closes: #696691) * Add savannah-bug-37907.patch patch [SECURITY] CVE-2012-5670: Out-of-bounds write in _bdf_parse_glyphs. (Closes: #696691) -- Salvatore Bonaccorso <carnil@debian.org> Fri, 28 Dec 2012 21:32:28 +0100 Would it be possible to prepare an updated backport for freetype? Might need also a BSA number for this? (not sure as it's not a grave Regards, Salvatore
Attachment:
signature.asc
Description: Digital signature