FEDORA-2017-5760b80676

security update in Fedora 25 for freetype

Status: stable 2 years ago

Security fixes for CVE-2017-8105 and CVE-2017-8287.

Comments 9

This update has been submitted for testing by mkasik.

freetype-2.6.5-7.fc25 ejected from the push because u"Cannot find relevant tag for freetype-2.6.5-7.fc25. None of ['f25-updates-testing', 'f25-updates-testing-pending'] are in [u'f22-updates-candidate', u'dist-6E-epel-testing-candidate', u'f21-updates-candidate', u'f24-updates-candidate', u'f26-updates-candidate', u'epel7-testing-candidate', u'f25-updates-candidate', u'f23-updates-candidate', u'dist-5E-epel-testing-candidate']."

This update has been submitted for testing by mohanboddu.

no regressions noted

karma: +1

This update has been pushed to testing.

works for me

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 4

00 #1446073 CVE-2017-8287 freetype: heap-based buffer overflow related to the t1_builder_close_contour function
00 #1446074 CVE-2017-8287 freetype: heap-based buffer overflow related to the t1_builder_close_contour function [fedora-all]
00 #1446500 CVE-2017-8105 freetype: heap-based buffer overflow related to the t1_decoder_parse_charstrings
00 #1446501 CVE-2017-8105 freetype: heap-based buffer overflow related to the t1_decoder_parse_charstrings [fedora-all]

Automated Test Results