[El-errata] ELSA-2010-0737 Important: Enterprise Linux 4 freetype security update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Mon Oct 4 19:21:52 PDT 2010
Enterprise Linux Security Advisory ELSA-2010-0737
https://rhn.redhat.com/errata/RHSA-2010-0737.html
The following updated rpms for Enterprise Linux 4 have been uploaded to
the Unbreakable Linux Network:
i386:
freetype-2.1.9-17.el4.8.i386.rpm
freetype-demos-2.1.9-17.el4.8.i386.rpm
freetype-devel-2.1.9-17.el4.8.i386.rpm
freetype-utils-2.1.9-17.el4.8.i386.rpm
x86_64:
freetype-2.1.9-17.el4.8.i386.rpm
freetype-2.1.9-17.el4.8.x86_64.rpm
freetype-demos-2.1.9-17.el4.8.x86_64.rpm
freetype-devel-2.1.9-17.el4.8.x86_64.rpm
freetype-utils-2.1.9-17.el4.8.x86_64.rpm
ia64:
freetype-2.1.9-17.el4.8.i386.rpm
freetype-2.1.9-17.el4.8.ia64.rpm
freetype-demos-2.1.9-17.el4.8.ia64.rpm
freetype-devel-2.1.9-17.el4.8.ia64.rpm
freetype-utils-2.1.9-17.el4.8.ia64.rpm
SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/freetype-2.1.9-17.el4.8.src.rpm
Description of changes:
[2.1.9-17.el4.8]
- Modify freetype-2.1.9-CVE-2010-3054.patch
- Resolves: #638140
[2.1.9-16.el4.8]
- Add freetype-2.1.9-CVE-2010-2806.patch
(Protect against negative string_size. Fix comparison.)
- Add freetype-2.1.9-CVE-2010-3311.patch
(Don't seek behind end of stream.)
- Add freetype-2.1.9-CVE-2010-3054.patch
(Protect against nested `seac' calls.)
- Add freetype-2.1.9-CVE-2010-2808.patch
(Check the total length of collected POST segments.)
- Resolves: #638140
More information about the El-errata
mailing list