[gentoo-commits] gentoo commit in xml/htdocs/security/en/glsa: glsa-200806-10.xml - gentoo-commits

From:	"Pierre-Yves Rofes (py)" <py@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo commit in xml/htdocs/security/en/glsa: glsa-200806-10.xml
Date:	Sat, 06 Sep 2008 20:33:54
Message-Id:	`E1Kc4Tf-0006Em-KI@stork.gentoo.org`

1

py          08/09/06 20:33:51

2

3

  Modified:             glsa-200806-10.xml

4

  Log:

5

  Adding unaffected version for 1.4 branch (#225851)

6

7

Revision  Changes    Path

8

1.2                  xml/htdocs/security/en/glsa/glsa-200806-10.xml

9

10

file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml?rev=1.2&view=markup

11

plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml?rev=1.2&content-type=text/plain

12

diff : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml?r1=1.1&r2=1.2

13

14

Index: glsa-200806-10.xml

15

===================================================================

16

RCS file: /var/cvsroot/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml,v

17

retrieving revision 1.1

18

retrieving revision 1.2

19

diff -u -r1.1 -r1.2

20

--- glsa-200806-10.xml	23 Jun 2008 23:54:37 -0000	1.1

21

+++ glsa-200806-10.xml	6 Sep 2008 20:33:51 -0000	1.2

22

@@ -11,12 +11,13 @@

23

   </synopsis>

24

   <product type="ebuild">freetype</product>

25

   <announced>June 23, 2008</announced>

26

-  <revised>June 23, 2008: 01</revised>

27

+  <revised>September 06, 2008: 02</revised>

28

   <bug>225851</bug>

29

   <access>remote</access>

30

   <affected>

31

     <package name="media-libs/freetype" auto="yes" arch="*">

32

       <unaffected range="ge">2.3.6</unaffected>

33

+      <unaffected range="eq">1.4_pre20080316-r1</unaffected>

34

       <vulnerable range="lt">2.3.6</vulnerable>

35

     </package>

36

   </affected>

37

@@ -33,7 +34,8 @@

38

     <ul>

39

     <li>

40

     An integer overflow when parsing values in the Private dictionary table

41

-    in a PFB file, leading to a heap-based buffer overflow (CVE-2008-1806).

42

+    in a PFB file, leading to a heap-based buffer overflow

43

+    (CVE-2008-1806).

44

     </li>

45

     <li>

46

     An invalid free() call related to parsing an invalid "number of axes"

1	py 08/09/06 20:33:51
2
3	Modified: glsa-200806-10.xml
4	Log:
5	Adding unaffected version for 1.4 branch (#225851)
6
7	Revision Changes Path
8	1.2 xml/htdocs/security/en/glsa/glsa-200806-10.xml
9
10	file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml?rev=1.2&view=markup
11	plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml?rev=1.2&content-type=text/plain
12	diff : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml?r1=1.1&r2=1.2
13
14	Index: glsa-200806-10.xml
15	===================================================================
16	RCS file: /var/cvsroot/gentoo/xml/htdocs/security/en/glsa/glsa-200806-10.xml,v
17	retrieving revision 1.1
18	retrieving revision 1.2
19	diff -u -r1.1 -r1.2
20	--- glsa-200806-10.xml 23 Jun 2008 23:54:37 -0000 1.1
21	+++ glsa-200806-10.xml 6 Sep 2008 20:33:51 -0000 1.2
22	@@ -11,12 +11,13 @@
23	</synopsis>
24	<product type="ebuild">freetype</product>
25	<announced>June 23, 2008</announced>
26	- <revised>June 23, 2008: 01</revised>
27	+ <revised>September 06, 2008: 02</revised>
28	<bug>225851</bug>
29	<access>remote</access>
30	<affected>
31	<package name="media-libs/freetype" auto="yes" arch="*">
32	<unaffected range="ge">2.3.6</unaffected>
33	+ <unaffected range="eq">1.4_pre20080316-r1</unaffected>
34	<vulnerable range="lt">2.3.6</vulnerable>
35	</package>
36	</affected>
37	@@ -33,7 +34,8 @@
38	<ul>
39	<li>
40	An integer overflow when parsing values in the Private dictionary table
41	- in a PFB file, leading to a heap-based buffer overflow (CVE-2008-1806).
42	+ in a PFB file, leading to a heap-based buffer overflow
43	+ (CVE-2008-1806).
44	</li>
45	<li>
46	An invalid free() call related to parsing an invalid "number of axes"

Gentoo Archives: gentoo-commits