[Bug 1504381] New: libXfont-1.5.3 is available
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1504381
Bug ID: 1504381
Summary: libXfont-1.5.3 is available
Product: Fedora
Version: rawhide
Component: libXfont
Keywords: FutureFeature, Triaged
Assignee: btissoir(a)redhat.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: ajax(a)redhat.com, alexl(a)redhat.com,
btissoir(a)redhat.com, caillon+fedoraproject(a)gmail.com,
caolanm(a)redhat.com,
fonts-bugs(a)lists.fedoraproject.org,
jglisse(a)redhat.com, john.j5live(a)gmail.com,
mbarnes(a)fastmail.com, rhughes(a)redhat.com,
rstrode(a)redhat.com, sandmann(a)redhat.com
Latest upstream release: 1.5.3
Current version/release in rawhide: 1.5.2-5.fc28
URL: http://xorg.freedesktop.org/archive/individual/lib/
Please consult the package updates policy before you issue an update to a
stable branch: https://fedoraproject.org/wiki/Updates_Policy
More information about the service that created this bug can be found at:
https://fedoraproject.org/wiki/Upstream_release_monitoring
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from anitya:
https://release-monitoring.org/project/1776/
--
You are receiving this mail because:
You are on the CC list for the bug.
6 years, 1 month
[Bug 1519084] New: CVE-2017-16611 libXfont:
User can trigger arbitrary file read by X server causing a DoS [
fedora-all]
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1519084
Bug ID: 1519084
Summary: CVE-2017-16611 libXfont: User can trigger arbitrary
file read by X server causing a DoS [fedora-all]
Product: Fedora
Version: 27
Component: libXfont
Keywords: Security, SecurityTracking
Severity: low
Priority: low
Assignee: btissoir(a)redhat.com
Reporter: sfowler(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: ajax(a)redhat.com, alexl(a)redhat.com,
btissoir(a)redhat.com, caillon+fedoraproject(a)gmail.com,
fonts-bugs(a)lists.fedoraproject.org,
jglisse(a)redhat.com, john.j5live(a)gmail.com,
mbarnes(a)fastmail.com, rhughes(a)redhat.com,
rstrode(a)redhat.com, sandmann(a)redhat.com
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedora. While only
one tracking bug has been filed, please correct all affected versions at
the same time. If you need to fix the versions independent of each other,
you may clone this bug as appropriate.
--
You are receiving this mail because:
You are on the CC list for the bug.
6 years, 1 month
[Bug 1520562] New: adobe-source-sans-pro-fonts for EPEL
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1520562
Bug ID: 1520562
Summary: adobe-source-sans-pro-fonts for EPEL
Product: Fedora
Version: rawhide
Component: adobe-source-sans-pro-fonts
Severity: low
Assignee: alexis.lameire(a)gmail.com
Reporter: mavit(a)mavit.org.uk
QA Contact: extras-qa(a)fedoraproject.org
CC: alexis.lameire(a)gmail.com,
fonts-bugs(a)lists.fedoraproject.org,
pikachu.2014(a)gmail.com
I'd like to build this package for EPEL 7. Could I have commit access, please?
--
You are receiving this mail because:
You are on the CC list for the bug.
6 years, 1 month
[Bug 1500693] New: CVE-2017-13722 libXfont:
Insufficient input validation in pcfread.c
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1500693
Bug ID: 1500693
Summary: CVE-2017-13722 libXfont: Insufficient input validation
in pcfread.c
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: low
Priority: low
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: ajax(a)redhat.com, alexl(a)redhat.com,
btissoir(a)redhat.com, caillon+fedoraproject(a)gmail.com,
caolanm(a)redhat.com,
fonts-bugs(a)lists.fedoraproject.org,
jglisse(a)redhat.com, john.j5live(a)gmail.com,
mbarnes(a)fastmail.com, rhughes(a)redhat.com,
rstrode(a)redhat.com, sandmann(a)redhat.com
It was discovered that libXfont incorrectly handled certain malformed PCF
files. A local attacker could use this issue to cause libXfont to crash,
resulting in a denial of service, or possibly obtain sensitive information.
Upstream patch:
https://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=672bb944311392e...
--
You are receiving this mail because:
You are on the CC list for the bug.
6 years, 2 months
[Bug 1500690] New: CVE-2017-13720 libXfont:
Insufficient input validation in fontdir.c
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1500690
Bug ID: 1500690
Summary: CVE-2017-13720 libXfont: Insufficient input validation
in fontdir.c
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: low
Priority: low
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: ajax(a)redhat.com, alexl(a)redhat.com,
btissoir(a)redhat.com, caillon+fedoraproject(a)gmail.com,
caolanm(a)redhat.com,
fonts-bugs(a)lists.fedoraproject.org,
jglisse(a)redhat.com, john.j5live(a)gmail.com,
mbarnes(a)fastmail.com, rhughes(a)redhat.com,
rstrode(a)redhat.com, sandmann(a)redhat.com
It was discovered that libXfont incorrectly handled certain patterns in
PatternMatch. A local attacker could use this issue to cause libXfont to
crash, resulting in a denial of service, or possibly obtain sensitive
information.
Upstream patch:
https://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=d1e670a4a8704b8...
--
You are receiving this mail because:
You are on the CC list for the bug.
6 years, 2 months
[Bug 1513999] terminal - mono fonts have gone haywire?
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1513999
--- Comment #4 from lejeczek <peljasz(a)yahoo.co.uk> ---
ok, something among below packages updates changed rendering again, and now the
same font appear different. What does it?
Upgraded:
GeoIP-GeoLite-data.noarch 2018.01-1.fc27
PackageKit.x86_64 1.1.8-1.fc27
PackageKit-command-not-found.x86_64 1.1.8-1.fc27
PackageKit-glib.x86_64 1.1.8-1.fc27
PackageKit-gstreamer-plugin.x86_64 1.1.8-1.fc27
PackageKit-gtk3-module.x86_64 1.1.8-1.fc27
anaconda.x86_64 27.20.4-6.fc27
anaconda-core.x86_64 27.20.4-6.fc27
anaconda-gui.x86_64 27.20.4-6.fc27
anaconda-tui.x86_64 27.20.4-6.fc27
anaconda-widgets.x86_64 27.20.4-6.fc27
autocorr-en.noarch 1:5.4.4.2-2.fc27
beignet.x86_64 1.3.2-2.fc27
bind.x86_64 32:9.11.1-10.P3.fc27
bind-libs.x86_64 32:9.11.1-10.P3.fc27
bind-libs-lite.x86_64 32:9.11.1-10.P3.fc27
bind-license.noarch 32:9.11.1-10.P3.fc27
bind-utils.x86_64 32:9.11.1-10.P3.fc27
clang.x86_64 5.0.0-1.fc27
clang-libs.x86_64 5.0.0-1.fc27
cockpit.x86_64 159-1.fc27
cockpit-bridge.x86_64 159-1.fc27
cockpit-dashboard.x86_64 159-1.fc27
cockpit-docker.x86_64 159-1.fc27
cockpit-networkmanager.noarch 159-1.fc27
cockpit-storaged.noarch 159-1.fc27
cockpit-system.noarch 159-1.fc27
cockpit-ws.x86_64 159-1.fc27
compiler-rt.x86_64 5.0.0-1.fc27
cups.x86_64 1:2.2.4-8.fc27
cups-client.x86_64 1:2.2.4-8.fc27
cups-filesystem.noarch 1:2.2.4-8.fc27
cups-libs.x86_64 1:2.2.4-8.fc27
eclipse-egit.noarch 4.10.0-1.fc27
eclipse-egit-github.noarch 4.10.0-1.fc27
eclipse-egit-mylyn.noarch 4.10.0-1.fc27
eclipse-jgit.noarch 4.10.0-2.fc27
evolution.x86_64 3.26.4-1.fc27
evolution-data-server.x86_64 3.26.4-1.fc27
evolution-data-server-langpacks.noarch 3.26.4-1.fc27
evolution-ews.x86_64 3.26.4-1.fc27
evolution-ews-langpacks.noarch 3.26.4-1.fc27
evolution-help.noarch 3.26.4-1.fc27
evolution-langpacks.noarch 3.26.4-1.fc27
fluidsynth-libs.x86_64 1.1.9-1.fc27
glusterfs.x86_64 3.12.5-1.fc27
glusterfs-api.x86_64 3.12.5-1.fc27
glusterfs-cli.x86_64 3.12.5-1.fc27
glusterfs-client-xlators.x86_64 3.12.5-1.fc27
glusterfs-fuse.x86_64 3.12.5-1.fc27
glusterfs-libs.x86_64 3.12.5-1.fc27
glusterfs-server.x86_64 3.12.5-1.fc27
gnome-settings-daemon.x86_64 3.26.2-2.fc27
gtk2.x86_64 2.24.32-1.fc27
hplip.x86_64 3.17.11-4.fc27
hplip-common.x86_64 3.17.11-4.fc27
hplip-libs.x86_64 3.17.11-4.fc27
iproute.x86_64 4.14.1-4.fc27
iproute-tc.x86_64 4.14.1-4.fc27
jgit.noarch 4.10.0-2.fc27
kmod.x86_64 25-1.fc27
kmod-libs.x86_64 25-1.fc27
libfilezilla.x86_64 0.11.2-1.fc27
libpagemaker.x86_64 0.0.4-1.fc27
libreoffice-calc.x86_64 1:5.4.4.2-2.fc27
libreoffice-core.x86_64 1:5.4.4.2-2.fc27
libreoffice-data.noarch 1:5.4.4.2-2.fc27
libreoffice-draw.x86_64 1:5.4.4.2-2.fc27
libreoffice-emailmerge.x86_64 1:5.4.4.2-2.fc27
libreoffice-filters.x86_64 1:5.4.4.2-2.fc27
libreoffice-graphicfilter.x86_64 1:5.4.4.2-2.fc27
libreoffice-gtk2.x86_64 1:5.4.4.2-2.fc27
libreoffice-gtk3.x86_64 1:5.4.4.2-2.fc27
libreoffice-help-en.x86_64 1:5.4.4.2-2.fc27
libreoffice-impress.x86_64 1:5.4.4.2-2.fc27
libreoffice-langpack-en.x86_64 1:5.4.4.2-2.fc27
libreoffice-math.x86_64 1:5.4.4.2-2.fc27
libreoffice-ogltrans.x86_64 1:5.4.4.2-2.fc27
libreoffice-opensymbol-fonts.noarch 1:5.4.4.2-2.fc27
libreoffice-pdfimport.x86_64 1:5.4.4.2-2.fc27
libreoffice-pyuno.x86_64 1:5.4.4.2-2.fc27
libreoffice-ure.x86_64 1:5.4.4.2-2.fc27
libreoffice-ure-common.noarch 1:5.4.4.2-2.fc27
libreoffice-writer.x86_64 1:5.4.4.2-2.fc27
libreoffice-x11.x86_64 1:5.4.4.2-2.fc27
libreoffice-xsltfilter.x86_64 1:5.4.4.2-2.fc27
libreofficekit.x86_64 1:5.4.4.2-2.fc27
libsane-hpaio.x86_64 3.17.11-4.fc27
libseccomp.x86_64 2.3.3-1.fc27
libsmbclient.x86_64 2:4.7.4-1.fc27
libsoup.x86_64 2.60.3-1.fc27
libwbclient.x86_64 2:4.7.4-1.fc27
llvm.x86_64 5.0.0-5.fc27
llvm-libs.x86_64 5.0.0-5.fc27
mesa-dri-drivers.x86_64 17.2.4-3.fc27
mesa-filesystem.x86_64 17.2.4-3.fc27
mesa-libEGL.x86_64 17.2.4-3.fc27
mesa-libGL.i686 17.2.4-3.fc27
mesa-libGL.x86_64 17.2.4-3.fc27
mesa-libGLES.x86_64 17.2.4-3.fc27
mesa-libOpenCL.x86_64 17.2.4-3.fc27
mesa-libgbm.x86_64 17.2.4-3.fc27
mesa-libglapi.i686 17.2.4-3.fc27
mesa-libglapi.x86_64 17.2.4-3.fc27
mesa-libwayland-egl.x86_64 17.2.4-3.fc27
mesa-vdpau-drivers.x86_64 17.2.4-3.fc27
mesa-vulkan-drivers.x86_64 17.2.4-3.fc27
pcre.i686 8.41-4.fc27
pcre.x86_64 8.41-4.fc27
pcre-cpp.x86_64 8.41-4.fc27
pcre-devel.x86_64 8.41-4.fc27
pcre-utf16.x86_64 8.41-4.fc27
pcre-utf32.x86_64 8.41-4.fc27
pcre2.i686 10.30-5.fc27
pcre2.x86_64 10.30-5.fc27
pcre2-devel.x86_64 10.30-5.fc27
pcre2-utf16.x86_64 10.30-5.fc27
pcre2-utf32.x86_64 10.30-5.fc27
perl-Data-Dumper.x86_64 2.167-398.fc27
perl-DateTime.x86_64 2:1.45-1.fc27
perl-Encode.x86_64 4:2.94-16.fc27
perl-Errno.x86_64 1.28-402.fc27
perl-IO.x86_64 1.38-402.fc27
perl-IO-Zlib.noarch 1:1.10-402.fc27
perl-Locale-Maketext-Simple.noarch 1:0.21-402.fc27
perl-Math-Complex.noarch 1.59-402.fc27
perl-Net-Ping.noarch 2.55-402.fc27
perl-Params-ValidationCompiler.noarch 0.26-1.fc27
perl-Pod-Html.noarch 1.22.02-402.fc27
perl-SelfLoader.noarch 1.23-402.fc27
perl-Socket.x86_64 4:2.025-1.fc27
perl-Time-HiRes.x86_64 1.9753-1.fc27
perl-Time-Piece.x86_64 1.31-402.fc27
perl-devel.x86_64 4:5.26.1-402.fc27
perl-encoding.x86_64 4:2.19-16.fc27
perl-interpreter.x86_64 4:5.26.1-402.fc27
perl-libs.x86_64 4:5.26.1-402.fc27
perl-macros.x86_64 4:5.26.1-402.fc27
perl-open.noarch 1.11-402.fc27
php.x86_64 7.1.13-1.fc27
php-cli.x86_64 7.1.13-1.fc27
php-common.x86_64 7.1.13-1.fc27
php-fpm.x86_64 7.1.13-1.fc27
php-json.x86_64 7.1.13-1.fc27
php-process.x86_64 7.1.13-1.fc27
php-xml.x86_64 7.1.13-1.fc27
pocl.x86_64 0.15-0.1.20171023git53ef5e8.fc27
python2.x86_64 2.7.14-5.fc27
python2-libs.x86_64 2.7.14-5.fc27
python2-requests-kerberos.noarch 0.12.0-1.fc27
python2-tkinter.x86_64 2.7.14-5.fc27
python3-bind.noarch 32:9.11.1-10.P3.fc27
python3-kickstart.noarch 2.41-2.fc27
python3-pep8.noarch 1.6.2-10.fc27
python3-requests-kerberos.noarch 0.12.0-1.fc27
rust-srpm-macros.noarch 5-1.fc27
samba-client.x86_64 2:4.7.4-1.fc27
samba-client-libs.x86_64 2:4.7.4-1.fc27
samba-common.noarch 2:4.7.4-1.fc27
samba-common-libs.x86_64 2:4.7.4-1.fc27
samba-common-tools.x86_64 2:4.7.4-1.fc27
samba-libs.x86_64 2:4.7.4-1.fc27
urw-base35-bookman-fonts.noarch 20170801-4.fc27
urw-base35-c059-fonts.noarch 20170801-4.fc27
urw-base35-d050000l-fonts.noarch 20170801-4.fc27
urw-base35-fonts.noarch 20170801-4.fc27
urw-base35-fonts-common.noarch 20170801-4.fc27
urw-base35-gothic-fonts.noarch 20170801-4.fc27
urw-base35-nimbus-mono-ps-fonts.noarch 20170801-4.fc27
urw-base35-nimbus-roman-fonts.noarch 20170801-4.fc27
urw-base35-nimbus-sans-fonts.noarch 20170801-4.fc27
urw-base35-p052-fonts.noarch 20170801-4.fc27
urw-base35-standard-symbols-ps-fonts.noarch 20170801-4.fc27
urw-base35-z003-fonts.noarch 20170801-4.fc27
xorg-x11-server-Xorg.x86_64 1.19.6-2.fc27
xorg-x11-server-Xwayland.x86_64 1.19.6-2.fc27
xorg-x11-server-common.x86_64 1.19.6-2.fc27
--
You are receiving this mail because:
You are on the CC list for the bug.
6 years, 3 months