[El-errata] ELSA-2009-0329 Important: Enterprise Linux 4 freetype security update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Wed May 27 09:00:35 PDT 2009
Enterprise Linux Security Advisory ELSA-2009-0329
https://rhn.redhat.com/errata/RHSA-2009-0329.html
The following updated rpms for Enterprise Linux 4 have been uploaded to
the Unbreakable Linux Network:
i386:
freetype-2.1.9-10.el4.7.i386.rpm
freetype-demos-2.1.9-10.el4.7.i386.rpm
freetype-devel-2.1.9-10.el4.7.i386.rpm
freetype-utils-2.1.9-10.el4.7.i386.rpm
x86_64:
freetype-2.1.9-10.el4.7.i386.rpm
freetype-2.1.9-10.el4.7.x86_64.rpm
freetype-demos-2.1.9-10.el4.7.x86_64.rpm
freetype-devel-2.1.9-10.el4.7.x86_64.rpm
freetype-utils-2.1.9-10.el4.7.x86_64.rpm
ia64:
freetype-2.1.9-10.el4.7.i386.rpm
freetype-2.1.9-10.el4.7.ia64.rpm
freetype-demos-2.1.9-10.el4.7.ia64.rpm
freetype-devel-2.1.9-10.el4.7.ia64.rpm
freetype-utils-2.1.9-10.el4.7.ia64.rpm
SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/freetype-2.1.9-10.el4.7.src.rpm
Description of changes:
[2.1.9-10.el4.7]
- Improve freetype-1.4pre-CVE-2008-1808.patch
[2.1.9-9.el4.7]
- Add freetype-2009-CVEs.patch (Fixes CVE-2009-0946)
(Doesn't apply to freetype1)
- Add freetype-1.4pre-CVE-2008-1808.patch
(Corresponds to freetype-2.3.5-CVEs.patch)
- Add freetype-pre1.4-ttf-overflow.patch
(Corresponds to freetype-2.1.9-ttf-overflow.patch;
freetype-2.2.1-bdf-overflow.patch doesn't apply to freetype1)
- Add freetype-pre1.4-CVE-2006-1861-null-pointer.patch
(Corresponds to freetype-2.1.9-CVE-2006-1861-null-pointer.patch;
The rest of CVS-2006-1861 doesn't apply to freetype1)
- Resolves: #484443
[2.1.9-8.1.el4]
- Update patches to remove fuzz, such that it builds again
- In preparation to fix:
- Resolves: #484443
More information about the El-errata
mailing list