[El-errata] ELSA-2010-0737 Important: Enterprise Linux 5 freetype security update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Mon Oct 4 19:21:43 PDT 2010
Enterprise Linux Security Advisory ELSA-2010-0737
https://rhn.redhat.com/errata/RHSA-2010-0737.html
The following updated rpms for Enterprise Linux 5 have been uploaded to
the Unbreakable Linux Network:
i386:
freetype-2.2.1-28.el5_5.i386.rpm
freetype-demos-2.2.1-28.el5_5.i386.rpm
freetype-devel-2.2.1-28.el5_5.i386.rpm
x86_64:
freetype-2.2.1-28.el5_5.i386.rpm
freetype-2.2.1-28.el5_5.x86_64.rpm
freetype-demos-2.2.1-28.el5_5.x86_64.rpm
freetype-devel-2.2.1-28.el5_5.i386.rpm
freetype-devel-2.2.1-28.el5_5.x86_64.rpm
ia64:
freetype-2.2.1-28.el5_5.i386.rpm
freetype-2.2.1-28.el5_5.ia64.rpm
freetype-demos-2.2.1-28.el5_5.ia64.rpm
freetype-devel-2.2.1-28.el5_5.ia64.rpm
SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/freetype-2.2.1-28.el5_5.src.rpm
Description of changes:
[2.2.1-28]
- Modify freetype-2.2.1-CVE-2010-3054.patch
- Resolves: #638142
[2.2.1-27]
- Add freetype-2.2.1-CVE-2010-2806.patch
(Protect against negative string_size. Fix comparison.)
- Add freetype-2.2.1-CVE-2010-3311.patch
(Don't seek behind end of stream.)
- Add freetype-2.2.1-CVE-2010-3054.patch
(Protect against nested `seac' calls.)
- Add freetype-2.2.1-CVE-2010-2808.patch
(Check the total length of collected POST segments.)
- Resolves: #638142
More information about the El-errata
mailing list