FEDORA-2017-71b9a2ef5f

security update in Fedora 26 for freetype

Status: stable 2 years ago

Security fixes for CVE-2017-8105 and CVE-2017-8287.

Comments 9

This update has been submitted for testing by mkasik.

freetype-2.7.1-6.fc26 ejected from the push because u"Cannot find relevant tag for freetype-2.7.1-6.fc26. None of ['f26-updates-testing', 'f26-updates-testing-pending'] are in [u'f22-updates-candidate', u'dist-6E-epel-testing-candidate', u'f21-updates-candidate', u'f24-updates-candidate', u'f26-updates-candidate', u'epel7-testing-candidate', u'f25-updates-candidate', u'f23-updates-candidate', u'dist-5E-epel-testing-candidate']."

This update has been submitted for testing by mohanboddu.

Works great! LGTM! =)

karma: +1

This update has been pushed to testing.

no regressions noted

karma: +1

Fonts are still on the screen.

karma: +1 critpath: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 4

00 #1446073 CVE-2017-8287 freetype: heap-based buffer overflow related to the t1_builder_close_contour function
00 #1446074 CVE-2017-8287 freetype: heap-based buffer overflow related to the t1_builder_close_contour function [fedora-all]
00 #1446500 CVE-2017-8105 freetype: heap-based buffer overflow related to the t1_decoder_parse_charstrings
00 #1446501 CVE-2017-8105 freetype: heap-based buffer overflow related to the t1_decoder_parse_charstrings [fedora-all]

Automated Test Results