[Pkg-fonts-devel] Bug#869614: fontforge: CVE-2017-11568 CVE-2017-11569 CVE-2017-11570 CVE-2017-11571 CVE-2017-11572 CVE-2017-11573 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577
- To: 869614@bugs.debian.org
- Subject: [Pkg-fonts-devel] Bug#869614: fontforge: CVE-2017-11568 CVE-2017-11569 CVE-2017-11570 CVE-2017-11571 CVE-2017-11572 CVE-2017-11573 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577
- From: Salvatore Bonaccorso <carnil@debian.org>
- Date: Tue, 5 Sep 2017 07:05:37 +0200
- Message-id: <[🔎] 20170905050537.f6uefclgscfbly6q@lorien.valinor.li>
- Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 869614@bugs.debian.org
- In-reply-to: <20170829101622.3hzlecwoipt434hz@lorien.valinor.li>
- References: <150092737113.27049.10185695718381579501.reportbug@eldamar.local> <150092737113.27049.10185695718381579501.reportbug@eldamar.local> <20170829101622.3hzlecwoipt434hz@lorien.valinor.li> <150092737113.27049.10185695718381579501.reportbug@eldamar.local>
Control: severity -1 serious
# rationale: regression stable -> next stable
Hi
On Tue, Aug 29, 2017 at 12:16:22PM +0200, Salvatore Bonaccorso wrote:
> Control: clone -1 -2 -3
> Control: retitle -1 fontforge: CVE-2017-11568 CVE-2017-11569 CVE-2017-11571 CVE-2017-11572 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577
> Control: retitle -2 fontforge: CVE-2017-11570
> Control: retitle -3 fontforge: CVE-2017-11573
> Control: fixed -1 20120731.b-5+deb8u1
> Control: fixed -1 1:20161005~dfsg-4+deb9u1
> Control: forwarded -2 https://github.com/fontforge/fontforge/issues/3097
> Control: forwarded -3 https://github.com/fontforge/fontforge/issues/3098
>
> Hi
>
> since the set of issues fixed together diverge a bit, let's split this
> bug up into the set of already fixed ones and then the two open CVEs
> yet.
>
> Btw, any plan to do as well an unstable upload?
Raising severity to RC, since fixed in stable but implies regression
to testing as unfixed there yet.
Regards,
Salvatore
Reply to: