Activity log for bug #963283
| Date | Who | What changed | Old value | New value | Message |
|---|---|---|---|---|---|
| 2012-03-23 17:05:02 | Tyler Hicks | bug | added bug | ||
| 2012-03-23 17:05:22 | Tyler Hicks | cve linked | 2012-1126 | ||
| 2012-03-23 17:07:31 | Tyler Hicks | cve linked | 2012-1127 | ||
| 2012-03-23 17:07:49 | Tyler Hicks | cve linked | 2012-1128 | ||
| 2012-03-23 17:08:15 | Tyler Hicks | cve linked | 2012-1129 | ||
| 2012-03-23 17:08:20 | Tyler Hicks | cve linked | 2012-1130 | ||
| 2012-03-23 17:08:28 | Tyler Hicks | cve linked | 2012-1131 | ||
| 2012-03-23 17:08:36 | Tyler Hicks | cve linked | 2012-1132 | ||
| 2012-03-23 17:08:43 | Tyler Hicks | cve linked | 2012-1133 | ||
| 2012-03-23 17:08:47 | Tyler Hicks | cve linked | 2012-1134 | ||
| 2012-03-23 17:08:52 | Tyler Hicks | cve linked | 2012-1135 | ||
| 2012-03-23 17:08:58 | Tyler Hicks | cve linked | 2012-1136 | ||
| 2012-03-23 17:09:03 | Tyler Hicks | cve linked | 2012-1137 | ||
| 2012-03-23 17:09:08 | Tyler Hicks | cve linked | 2012-1138 | ||
| 2012-03-23 17:09:44 | Tyler Hicks | cve linked | 2012-1139 | ||
| 2012-03-23 17:09:49 | Tyler Hicks | cve linked | 2012-1140 | ||
| 2012-03-23 17:09:52 | Tyler Hicks | cve linked | 2012-1141 | ||
| 2012-03-23 17:09:58 | Tyler Hicks | cve linked | 2012-1142 | ||
| 2012-03-23 17:10:03 | Tyler Hicks | cve linked | 2012-1143 | ||
| 2012-03-23 17:10:07 | Tyler Hicks | cve linked | 2012-1144 | ||
| 2012-03-23 17:18:03 | Tyler Hicks | attachment added | freetype_2.4.8-1ubuntu1.debdiff https://bugs.launchpad.net/ubuntu/+source/freetype/+bug/963283/+attachment/2923617/+files/freetype_2.4.8-1ubuntu1.debdiff | ||
| 2012-03-23 17:20:20 | Tyler Hicks | description | Precise, along with Debian unstable and testing, currently use freetype version 2.4.8-1. Upstream FreeType recently released version 2.4.9, which addressed many security issues: http://sourceforge.net/projects/freetype/files/freetype2/2.4.9/README/view There have also been a few upstream commits, since the 2.4.9 release, that made improvements and/or corrections to the changes in 2.4.9. I've addressed these issues in our stable releases, but Precise is still in need of an update. I will attach a debdiff of the fixes backported to 2.4.8-1. | Precise, along with Debian unstable and testing, currently use freetype version 2.4.8-1. Upstream FreeType recently released version 2.4.9, which addressed many security issues: http://sourceforge.net/projects/freetype/files/freetype2/2.4.9/README/view There have also been a few upstream commits, since the 2.4.9 release, that made improvements and/or corrections to the changes in 2.4.9. I've addressed these issues in our stable releases, but Precise is still in need of an update. I will attach a debdiff of the fixes backported to 2.4.8-1. The Ubuntu CVE Tracker has links to the related bugs and patches: http://people.canonical.com/~ubuntu-security/cve/pkg/freetype.html | |
| 2012-03-23 17:21:24 | Tyler Hicks | bug | added subscriber Ubuntu Security Sponsors Team | ||
| 2012-03-23 17:21:26 | Tyler Hicks | freetype (Ubuntu): status | Triaged | Confirmed | |
| 2012-03-23 17:21:36 | Tyler Hicks | visibility | private | public | |
| 2012-03-26 13:08:18 | Jamie Strandboge | freetype (Ubuntu): assignee | Tyler Hicks (tyhicks) | ||
| 2012-03-26 13:08:24 | Jamie Strandboge | freetype (Ubuntu): milestone | ubuntu-12.04 | ||
| 2012-03-26 13:08:31 | Jamie Strandboge | freetype (Ubuntu): status | Confirmed | In Progress | |
| 2012-03-26 13:14:37 | Jamie Strandboge | freetype (Ubuntu): status | In Progress | Fix Committed | |
| 2012-03-26 13:15:06 | Jamie Strandboge | removed subscriber Ubuntu Security Sponsors Team | |||
| 2012-03-29 15:45:04 | Launchpad Janitor | freetype (Ubuntu): status | Fix Committed | Fix Released | |
| 2012-04-01 16:02:22 | Launchpad Janitor | branch linked | lp:ubuntu/freetype |
