Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
Summary: CVE-2010-1797 FreeType: Multiple stack overflows by processing CFF opcodes [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Summary: CVE-2010-1797 FreeType: Multiple stack overflows by processing CFF opcodes [fedora-all] Product: Fedora Version: 13 Platform: All OS/Version: Linux Status: NEW Keywords: Security, SecurityTracking Severity: high Priority: high Component: freetype AssignedTo: behdad@fedoraproject.org ReportedBy: vdanen@redhat.com QAContact: extras-qa@fedoraproject.org CC: behdad@fedoraproject.org, kevin@tigcc.ticalc.org, fonts-bugs@lists.fedoraproject.org Blocks: 621144 Classification: Fedora Target Release: ---
This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected Fedora versions.
For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in the "Blocks" field.
For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the respective parent bugs filed against the "Security Response" product. Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=621144
Please note: this issue affects multiple supported versions of Fedora. Only one tracking bug has been filed; please only close it when all affected versions are fixed.
[bug automatically created by: add-tracking-bugs]
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
--- Comment #1 from Fedora Admin XMLRPC Client fedora-admin-xmlrpc@redhat.com 2010-09-22 09:54:56 EDT --- This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Fedora Admin XMLRPC Client fedora-admin-xmlrpc@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|behdad@fedoraproject.org |mkasik@redhat.com
--- Comment #2 from Fedora Admin XMLRPC Client fedora-admin-xmlrpc@redhat.com 2010-09-22 09:55:05 EDT --- This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Huzaifa S. Sidhpurwala huzaifas@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks| |621980(CVE-2010-2806) Summary|CVE-2010-1797 FreeType: |CVE-2010-1797 CVE-2010-2806 |Multiple stack overflows by |freetype various flaws |processing CFF opcodes |[fedora-all] |[fedora-all] |
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
--- Comment #3 from Huzaifa S. Sidhpurwala huzaifas@redhat.com 2010-09-29 04:50:17 EDT ---
Adding parent bug CVE-2010-2806 New bodhi update url:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=621144,...
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Huzaifa S. Sidhpurwala huzaifas@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks|621980(CVE-2010-2806) |
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Marek Kašík mkasik@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |MODIFIED Fixed In Version| |freetype-2.3.11-5.{fc12,fc1 | |3}
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
--- Comment #4 from Fedora Update System updates@fedoraproject.org 2010-10-04 10:10:18 EDT --- freetype-2.3.11-6.fc12 has been submitted as an update for Fedora 12. https://admin.fedoraproject.org/updates/freetype-2.3.11-6.fc12
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
--- Comment #5 from Fedora Update System updates@fedoraproject.org 2010-10-04 10:11:14 EDT --- freetype-2.3.11-6.fc13 has been submitted as an update for Fedora 13. https://admin.fedoraproject.org/updates/freetype-2.3.11-6.fc13
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Fedora Update System updates@fedoraproject.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|MODIFIED |ON_QA
--- Comment #6 from Fedora Update System updates@fedoraproject.org 2010-10-05 05:25:14 EDT --- freetype-2.3.11-6.fc13 has been pushed to the Fedora 13 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update freetype'. You can provide feedback for this update here: https://admin.fedoraproject.org/updates/freetype-2.3.11-6.fc13
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
--- Comment #7 from Fedora Update System updates@fedoraproject.org 2010-10-19 03:22:40 EDT --- freetype-2.3.11-6.fc13 has been pushed to the Fedora 13 stable repository. If problems still persist, please make note of it in this bug report.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Fedora Update System updates@fedoraproject.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Fixed In Version|freetype-2.3.11-5.{fc12,fc1 |freetype-2.3.11-6.fc13 |3} | Resolution| |ERRATA Last Closed| |2010-10-19 03:22:55
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
--- Comment #8 from Fedora Update System updates@fedoraproject.org 2010-11-01 16:53:06 EDT --- freetype-2.3.11-6.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=621627
Fedora Update System updates@fedoraproject.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Fixed In Version|freetype-2.3.11-6.fc13 |freetype-2.3.11-6.fc12
fonts-bugs@lists.fedoraproject.org