bug#44146: CVE-2020-15999 in FreeType

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#44146: CVE-2020-15999 in FreeType

From:	Maxim Cournoyer
Subject:	bug#44146: CVE-2020-15999 in FreeType
Date:	Tue, 10 Nov 2020 15:21:32 -0500
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)

Hello,

Marius Bakke <marius@gnu.org> writes:

> Hello,
>
> The 'freetype' package is vulnerable to CVE-2020-15999.
>
> According to
> https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html,
> an exploit already exists in the wild.
>
> I'm busy for a couple of days and won't be able to work on it in time.
> Volunteers wanted!

This was fixed by Tobias in commit
d32b210f282ef74caf9890e1d4ffe8eb04bd64e5.

Closing.

Thank you for the report!

Maxim

[Prev in Thread]

Current Thread

[Next in Thread]

bug#44146: CVE-2020-15999 in FreeType, Maxim Cournoyer <=

Prev by Date: bug#41780: UEFI bios not supported out of the box when burning to usb stick
Next by Date: bug#44511: guix system vm-image fails when using grub-efi-bootleader
Previous by thread: bug#41780: UEFI bios not supported out of the box when burning to usb stick
Next by thread: bug#44559: gnutls 3.6.12 fails to build: FAIL: status-request-revoked
Index(es):
- Date
- Thread