[Bug 1741802] CVE-2015-9290 freetype: buffer over-read in function T1_Get_Private_Dict in type1/t1parse.c
https://bugzilla.redhat.com/show_bug.cgi?id=1741802
--- Comment #3 from Doran Moppert <dmoppert(a)redhat.com> ---
In reply to comment #2:
Hi, is this an issue in current Fedora? I see that we have 2.9.1 in
Fedora
29 and the code fixing this issue is there. Also I can not reproduce this
with the reproducer on Fedora 30.
It seems not: while this CVE assignment was only published recently, the
original issue was fixed upstream in release 2.6.1, and is present in active
Fedora releases. The Fedora tracking bug 1741803 can be closed.
--
You are receiving this mail because:
You are on the CC list for the bug.