Overview

File libXfont.changes of Package libXfont.openSUSE_12.3_Update

-------------------------------------------------------------------
Fri May  9 14:00:27 UTC 2014 - msrb@suse.com

- U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch,
  U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch,
  U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch,
  U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch,
  U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch,
  U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch,
  U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch,
  U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch,
  U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch,
  U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patch,
  U_0011-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch,
  U_0012-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch
  * Security fixes. (CVE-2014-0209, CVE-2014-0210, CVE-2014-0211,
    bnc#857544)

-------------------------------------------------------------------
Wed Jan  8 12:52:53 UTC 2014 - sndirsch@suse.com

- U_CVE-2013-6462-unlimited-sscanf-overflows-stack-buffe.patch 
  * unlimited sscanf overflows stack buffer in bdfReadCharacters()
   (CVE-2013-6462, bnc#854915)

-------------------------------------------------------------------
Thu Apr 12 06:24:00 UTC 2012 - vuntz@opensuse.org

- Update to version 1.4.5:
  + Updates to better handle fonts compressed with compress(1)
  + Do proper input validation to fix for CVE-2011-2895
  + Fix crash if pcf header is corrupted
  + Cleanups for compiler warnings
  + Improvements for the developer documentation
  + Build configuration improvements
- Changes from version 1.4.4:
  + LZW decompress: fix for CVE-2011-2895
  + Fix memory leak
  + Build configuration improvements
- Drop U_libXfont_LZW-decompress-fix-for-CVE-2011-2895.patch: fixed
  upstream.

-------------------------------------------------------------------
Tue Feb  7 22:17:49 UTC 2012 - jengelh@medozas.de

- Split xorg-x11-libs into separate packages
openSUSE Build Service is sponsored by
Places