Bug 33866

Summary: libxfont: Buffer overflow (3.2)
Product: UCS Reporter: Moritz Muehlenhoff <jmm>
Component: Security updatesAssignee: Janek Walkenhorst <walkenhorst>
Status: CLOSED FIXED QA Contact: Moritz Muehlenhoff <jmm>
Severity: normal    
Priority: P2    
Version: UCS 3.0   
Target Milestone: UCS 3.2-0-errata   
Hardware: Other   
OS: Linux   
What kind of report is it?: --- What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional):
Max CVSS v3 score:
Bug Depends on: 33865    
Bug Blocks:    

Description Moritz Muehlenhoff univentionstaff 2014-01-08 08:37:15 CET 
+++ This bug was initially created as a clone of Bug #33865 +++

CVE-2013-6462

Buffer overflow in parsing BDF fonts
Comment 1 Janek Walkenhorst univentionstaff 2014-01-20 14:50:18 CET 
New version imported and built.
Tests (amd64): OK
Advisory: 2014-01-20-libxfont.yaml
Comment 2 Moritz Muehlenhoff univentionstaff 2014-01-21 10:29:24 CET 
Update ok. I've commited some changes to the YAML file.
Comment 3 Moritz Muehlenhoff univentionstaff 2014-01-21 14:07:53 CET 
http://errata.univention.de/ucs/3.2/21.html