[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1013-1] graphite2 security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : graphite2
Version        : 1.3.10-1~deb7u1
CVE ID         : CVE-2017-7771 CVE-2017-7772 CVE-2017-7773
                 CVE-2017-7774 CVE-2017-7775 CVE-2017-7776
                 CVE-2017-7777 CVE-2017-7778

Multiple vulnerabilities have been found in the Graphite font rendering
engine which might result in denial of service or the execution of
arbitrary code if a malformed font file is processed.

For Debian 7 "Wheezy", these problems have been fixed in version
1.3.10-1~deb7u1.

We recommend that you upgrade your graphite2 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=E7J5
-----END PGP SIGNATURE-----


Reply to: