[Sync request] Sync t1lib (5.1.0-3) from Debian unstable main

Bug #140665 reported by Michael Bienia on 2007-09-18
Affects Status Importance Assigned to Milestone
t1lib (Ubuntu)

Bug Description

Please sync t1lib (5.1.0-3) from Debian unstable main.

The current package has no Ubuntu changes.
The new package builds cleanly in a gutsy pbuilder.



t1lib (5.1.0-3) unstable; urgency=low

  * Apply patch from Artur R. Czechowski to fix CVE-2007-4033.
    (Closes: #439927)

 -- Torsten Werner <email address hidden> Mon, 17 Sep 2007 23:25:45 +0200

Kees Cook (kees) wrote :

ACK. Please sync.

Changed in t1lib:
assignee: nobody → jamie-strandboge
assignee: jamie-strandboge → nobody
Sebastien Bacher (seb128) wrote :

[Updating] t1lib (5.1.0-2build1 [Ubuntu] < 5.1.0-3 [Debian])
 * Trying to add t1lib...
  - <t1lib_5.1.0-3.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <t1lib_5.1.0.orig.tar.gz: already in distro - downloading from librarian>
  - <t1lib_5.1.0-3.dsc: downloading from http://ftp.debian.org/debian/>
I: t1lib [main] -> libt1-doc_5.1.0-2build1 [main].
I: t1lib [main] -> libt1-dev_5.1.0-2build1 [main].
I: t1lib [main] -> t1lib-bin_5.1.0-2build1 [universe].
I: t1lib [main] -> libt1-5_5.1.0-2build1 [main].

Changed in t1lib:
importance: Undecided → Wishlist
status: New → Fix Released
Jamie Strandboge (jdstrand) wrote :

t1lib (5.1.0-2ubuntu0.7.04.1) feisty-security; urgency=low

  * SECURITY UPDATE: improper bounds checking for call to strcat results in
    buffer overflow
  * Added inline patch to lib/t1lib/t1env.c for proper bounds checking
  * References
    LP: #140665
  * Modify Maintainer value to match the DebianMaintainerField

 -- Jamie Strandboge <email address hidden> Tue, 18 Sep 2007 14:25:28 -0400

Changed in t1lib:
status: Fix Released → In Progress
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers