[Pkg-fonts-bugs] Bug#869614: fontforge: CVE-2017-11568 CVE-2017-11569 CVE-2017-11570 CVE-2017-11571 CVE-2017-11572 CVE-2017-11573 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577

Salvatore Bonaccorso carnil at debian.org
Tue Sep 5 05:05:37 UTC 2017


Control: severity -1 serious
# rationale: regression stable -> next stable

Hi

On Tue, Aug 29, 2017 at 12:16:22PM +0200, Salvatore Bonaccorso wrote:
> Control: clone -1 -2 -3
> Control: retitle -1 fontforge: CVE-2017-11568 CVE-2017-11569 CVE-2017-11571 CVE-2017-11572 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577
> Control: retitle -2 fontforge: CVE-2017-11570
> Control: retitle -3 fontforge: CVE-2017-11573
> Control: fixed -1 20120731.b-5+deb8u1
> Control: fixed -1 1:20161005~dfsg-4+deb9u1
> Control: forwarded -2 https://github.com/fontforge/fontforge/issues/3097
> Control: forwarded -3 https://github.com/fontforge/fontforge/issues/3098
> 
> Hi
> 
> since the set of issues fixed together diverge a bit, let's split this
> bug up into the set of already fixed ones and then the two open CVEs
> yet.
> 
> Btw, any plan to do as well an unstable upload?

Raising severity to RC, since fixed in stable but implies regression
to testing as unfixed there yet.

Regards,
Salvatore




More information about the Pkg-fonts-bugs mailing list