Sign me up Login

Details about package freetype

Name: freetype (PTS)
Uploader: Hugh McMaster <hugh.mcmaster@outlook.com> (Debian QA page)
Description: libfreetype6 - FreeType 2 font engine, shared library files
libfreetype6-dev - FreeType 2 font engine, development files
freetype2-demos - FreeType 2 demonstration programs
libfreetype6-udeb - FreeType 2 font engine for the debian-installer

Package uploads

Upload #1

Information

Version: 2.6.3-3.2+deb9u3
Uploaded: 2022-05-09 14:14
Source package: freetype_2.6.3-3.2+deb9u3.dsc
Distribution: stretch
Section: libs
Priority: optional
Homepage: http://www.freetype.org
Closes bugs: #1010183

Changelog

 freetype (2.6.3-3.2+deb9u3) stretch; urgency=medium
 .
   * Add upstream patches to fix multiple vulnerabilities. Closes: #1010183.
     - CVE-2022-27404: heap buffer overflow via invalid integer decrement in
       sfnt_init_face().
     - CVE-2022-27405: segmentation violation via ft_open_face_internal() when
       attempting to read the value of FT_LONG face_index.
     - CVE-2022-27406: segmentation violation via FT_Request_Size() when
       attempting to read the value of an unguarded face size handle.

QA information

Comments

No comments