[ubuntu/maverick-security] pango1.0, pango1.0 (delayed) 1.28.2-0ubuntu1.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Mar 2 15:03:29 UTC 2011 

pango1.0 (1.28.2-0ubuntu1.1) maverick-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    crafted font file (LP: #696616)
    - debian/patches/20_CVE-2011-0020.patch: check for overflow in
      pango/pangoft2-render.c.
    - CVE-2011-0020
  * SECURITY UPDATE: denial of service and possible code execution via
    unchecked realloc failures
    - debian/patches/21_CVE-2011-0064.patch: check for realloc failures in
      pango/opentype/hb-buffer.*, pango/opentype/hb-buffer-private.h.
    - CVE-2011-0064

Date: Tue, 01 Mar 2011 09:35:52 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/pango1.0/1.28.2-0ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Tue, 01 Mar 2011 09:35:52 -0500
Source: pango1.0
Binary: libpango1.0-0 libpango1.0-udeb libpango1.0-common libpango1.0-dev libpango1.0-0-dbg libpango1.0-doc gir1.0-pango-1.0
Architecture: source
Version: 1.28.2-0ubuntu1.1
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 gir1.0-pango-1.0 - Layout and rendering of internationalized text
 libpango1.0-0 - Layout and rendering of internationalized text
 libpango1.0-0-dbg - The Pango library and debugging symbols
 libpango1.0-common - Modules and configuration files for the Pango
 libpango1.0-dev - Development files for the Pango
 libpango1.0-doc - Documentation files for the Pango
 libpango1.0-udeb - Layout and rendering of internationalized text - minimal runtime (udeb)
Launchpad-Bugs-Fixed: 696616
Changes: 
 pango1.0 (1.28.2-0ubuntu1.1) maverick-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     crafted font file (LP: #696616)
     - debian/patches/20_CVE-2011-0020.patch: check for overflow in
       pango/pangoft2-render.c.
     - CVE-2011-0020
   * SECURITY UPDATE: denial of service and possible code execution via
     unchecked realloc failures
     - debian/patches/21_CVE-2011-0064.patch: check for realloc failures in
       pango/opentype/hb-buffer.*, pango/opentype/hb-buffer-private.h.
     - CVE-2011-0064
Checksums-Sha1: 
 5a09fbf4cec7601145db8736a1672d1a1bcaeee7 2572 pango1.0_1.28.2-0ubuntu1.1.dsc
 3a1086b396e114f4214a29fdc888aad23fbfb3ec 104353 pango1.0_1.28.2-0ubuntu1.1.diff.gz
Checksums-Sha256: 
 c284fbaf5a4d0641847cd04b57bf9a64ab5c363bf159ef73e8a5d9d37ae6bf79 2572 pango1.0_1.28.2-0ubuntu1.1.dsc
 5957589c2f2c22f6fbc286f788ceab59975bc79335ac062384c2e806d86e2dba 104353 pango1.0_1.28.2-0ubuntu1.1.diff.gz
Files: 
 43985f0dde9cffc9eeecb04121d23677 2572 libs optional pango1.0_1.28.2-0ubuntu1.1.dsc
 924be26ec41f21177db1a778af01bb91 104353 libs optional pango1.0_1.28.2-0ubuntu1.1.diff.gz
Original-Maintainer: Sebastien Bacher <seb128 at debian.org>

More information about the Maverick-changes mailing list