[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[freetype2] master ba86636: And another CVE for an older FreeType versio
From: |
Werner LEMBERG |
Subject: |
[freetype2] master ba86636: And another CVE for an older FreeType version. |
Date: |
Wed, 26 Apr 2017 03:36:10 -0400 (EDT) |
branch: master
commit ba86636b14f876fa369c84467409b3b812d47e94
Author: Werner Lemberg <address@hidden>
Commit: Werner Lemberg <address@hidden>
And another CVE for an older FreeType version.
---
docs/CHANGES | 11 +++++++++--
1 file changed, 9 insertions(+), 2 deletions(-)
diff --git a/docs/CHANGES b/docs/CHANGES
index 8ad5dfa..d42accb 100644
--- a/docs/CHANGES
+++ b/docs/CHANGES
@@ -29,8 +29,9 @@ CHANGES BETWEEN 2.7.1 and 2.8
now scales the font linearly again (bug introduced in version
2.4.6).
- - CVE-2017-8105: Older FreeType versions has an out-of-bounds write
- caused by a heap-based buffer overflow related to the Type 1 fonts.
+ - CVE-2017-8105: Older FreeType versions has an out-of-bounds
+ write caused by a heap-based buffer overflow related to the Type
+ 1 fonts.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8105
@@ -101,6 +102,12 @@ CHANGES BETWEEN 2.7 and 2.7.1
- Handling of raw CID fonts was partially broken (bug introduced
in 2.6.4).
+ - CVE-2016-10328: Older FreeType versions had an out-of-bounds
+ write caused by a heap-based buffer overflow related to the CFF
+ fonts.
+
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10328
+
III. MISCELLANEOUS
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [freetype2] master ba86636: And another CVE for an older FreeType version.,
Werner LEMBERG <=