libxfont: Changes to 'debian-lenny'

To: debian-x@lists.debian.org
Subject: libxfont: Changes to 'debian-lenny'
From: Julien Cristau <jcristau@alioth.debian.org>
Date: Thu, 11 Aug 2011 14:29:28 +0000
Message-id: <[🔎] E1QrWGG-0003rw-4G@vasks.debian.org>

New branch 'debian-lenny' available with the following commits:
commit b3e4d8405d4da3cda7e038568f4a47d664ee599d
Author: Julien Cristau <jcristau@debian.org>
Date:   Thu Aug 11 15:48:32 2011 +0200

    Add changelog entry

commit bce34b84af84ce014976e346ff6a460bb94ea2e6
Author: Thomas Hoger <thoger@redhat.com>
Date:   Mon Aug 8 18:03:09 2011 +0200

    LZW decompress: fix for CVE-2011-2895
    
    Specially crafted LZW stream can crash an application using libXfont
    that is used to open untrusted font files.  With X server, this may
    allow privilege escalation when exploited
    
    Reviewed-by: Matthieu Herrb <matthieu.herrb@laas.fr>
    Signed-off-by: Matthieu Herrb <matthieu.herrb@laas.fr>
    Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com>
    (cherry picked from commit d11ee5886e9d9ec610051a206b135a4cdc1e09a0)

Reply to:

Prev by Date: libxfont: Changes to 'debian-squeeze'
Next by Date: xkb-data: Changes to 'ubuntu'
Previous by thread: libxfont: Changes to 'debian-squeeze'
Next by thread: xkb-data: Changes to 'ubuntu'
Index(es):
- Date
- Thread