Release 0.23.0 · cloudfoundry/cflinuxfs4

Notably, this release addresses:

USN-5528-1 USN-5528-1: FreeType vulnerabilities:

CVE-2022-27405: FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
CVE-2022-27406: FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.
CVE-2022-27404: FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
CVE-2022-31782: ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.

-ii  libfreetype-dev:amd64  2.11.1+dfsg-1build1    amd64  FreeType 2 font engine, development files
-ii  libfreetype6:amd64     2.11.1+dfsg-1build1    amd64  FreeType 2 font engine, shared library files
-ii  libfreetype6-dev:amd64 2.11.1+dfsg-1build1    amd64  FreeType 2 font engine, development files (transitional package)
+ii  libfreetype-dev:amd64  2.11.1+dfsg-1ubuntu0.1 amd64  FreeType 2 font engine, development files
+ii  libfreetype6:amd64     2.11.1+dfsg-1ubuntu0.1 amd64  FreeType 2 font engine, shared library files
+ii  libfreetype6-dev:amd64 2.11.1+dfsg-1ubuntu0.1 amd64  FreeType 2 font engine, development files (transitional package)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

0.23.0