Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 1 articles for you...
99
Ls Advisories Slackware Esm H240
Price Tag 1security advisorysoftware patchsecurity fix

Slackware 12.1: 2012-228-01 Moderate: T1lib Overflow Fix

New t1lib packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] t1lib (SSA:2012-228-01) New t1lib packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: +--------------------------+ patches/packages/t1lib-5.1.2-i486-3_slack13.37.txz: Rebuilt. Patched various overflows, crashes, and pointer bugs. For more information, see: https://www.cve.org/CVERecord?id=CVE-2010-2642 https://www.cve.org/CVERecord?id=CVE-2011-0764 https://www.cve.org/CVERecord?id=CVE-2011-1552 https://www.cve.org/CVERecord?id=CVE-2011-1553 https://www.cve.org/CVERecord?id=CVE-2011-1554 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 12.1: ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/t1lib-5.1.2-i486-1_slack12.1.tgz Updated package for Slackware 12.2: ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/t1lib-5.1.2-i486-1_slack12.2.tgz Updated package for Slackware 13.0: ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/t1lib-5.1.2-i486-2_slack13.0.txz Updated package for Slackware x86_64 13.0: ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/t1lib-5.1.2-x86_64-2_slack13.0.txz Updated package for Slackware 13.1: ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/t1lib-5.1.2-i486-2_slack13.1.txz Updated package for Slackware x86_6413.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/t1lib-5.1.2-x86_64-2_slack13.1.txz Updated package for Slackware 13.37: ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/t1lib-5.1.2-i486-3_slack13.37.txz Updated package for Slackware x86_64 13.37: ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/t1lib-5.1.2-x86_64-3_slack13.37.txz Updated package for Slackware -current: Updated package for Slackware x86_64 -current: MD5 signatures: +-------------+ Slackware 12.1 package: b4a19acb6abc371cecd3555b2e8d794a t1lib-5.1.2-i486-1_slack12.1.tgz Slackware 12.2 package: e8cbabaf0a83b81dccbe67862e0b7f0a t1lib-5.1.2-i486-1_slack12.2.tgz Slackware 13.0 package: aef159285fb637413ca0d7e59adf92da t1lib-5.1.2-i486-2_slack13.0.txz Slackware x86_64 13.0 package: c014687cf4154b42ec66fb6fc2ac3e7e t1lib-5.1.2-x86_64-2_slack13.0.txz Slackware 13.1 package: 2e14125a3c4f46811c7ee918ecdba79d t1lib-5.1.2-i486-2_slack13.1.txz Slackware x86_64 13.1 package: 7fd0cb7d16dee8b5b5757ac93258e838 t1lib-5.1.2-x86_64-2_slack13.1.txz Slackware 13.37 package: eab121d3ac1bb128efff380942609fd4 t1lib-5.1.2-i486-3_slack13.37.txz Slackware x86_64 13.37 package: 937da04c0f0f19812c440be48bf169ca t1lib-5.1.2-x86_64-3_slack13.37.txz Slackware -current package: 9b6796f3e27952172236425a7031cb58 l/t1lib-5.1.2-i486-3.txz Slackware x86_64 -current package: 6942fb6f9f78b8e3cc4a1c77469a2512 l/t1lib-5.1.2-x86_64-3.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg t1lib-5.1.2-i486-3_slack13.37.txz +-----+ . Fresh t1lib updates for Slackware tackling concerns such as buffer overflows and pointer errors have been released. Upgrade today!. Slackware Packages,t1lib Updates,Security Fixes,Software Upgrades. . LinuxSecurity.com Team

Calendar 2 Aug 16, 2012 Slackware
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysecurity updatebuffer overflow

Scientific Linux: Moderate t1lib Update for Heap and Memory Flaws

Moderate: t1lib security update. Date: Wed, 25 Jan 2012 15:20:23 -0600 Reply-To: This email address is being protected from spambots. You need JavaScript enabled to view it. Sender: Security Errata for Scientific Linux From: This email address is being protected from spambots. You need JavaScript enabled to view it. Subject: Security ERRATA Moderate: t1lib on SL6.x i386/x86_64 Comments: To: This email address is being protected from spambots. You need JavaScript enabled to view it. Synopsis: Moderate: t1lib security update Issue Date: 2012-01-24 CVE Numbers: CVE-2010-2642 CVE-2011-0433 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 CVE-2011-0764 The t1lib library allows you to rasterize bitmaps from PostScript Type 1 fonts. Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics (AFM) files. If a specially-crafted font file was opened by an application linked against t1lib, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-2642, CVE-2011-0433) An invalid pointer dereference flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-0764) A use-after-free flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1553) An off-by-one flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1554) An out-of-bounds memory read flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash. (CVE-2011-1552) All users of t1lib are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All applications linked against t1lib must be restarted for this updateto take effect. SL6: i386 t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm x86_64 t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm - Scientific Linux Development Team . Updated t1lib security patch for Scientific Linux to resolve various memory vulnerabilities and strengthen defense measures.. Scientific Linux Security, t1lib Patch, Memory Flaws Fix, Linux Security Update. . LinuxSecurity.com Team

Calendar 2 Jan 25, 2012 Scientific Linux
Banner 1 1028x280 1708121660 1771599717
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateRed Hat

Red Hat Enterprise Linux 6 RHSA-2012:0062-01 Moderate t1lib Buffer Overrun

Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: t1lib security update Advisory ID: RHSA-2012:0062-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2012:0062.html Issue date: 2012-01-24 CVE Names: CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 ==================================================================== 1. Summary: Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: The t1lib library allows you to rasterize bitmaps from PostScript Type 1 fonts. Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics (AFM) files. If a specially-crafted font file was opened by an application linked against t1lib, it could cause the applicationto crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-2642, CVE-2011-0433) An invalid pointer dereference flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-0764) A use-after-free flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1553) An off-by-one flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1554) An out-of-bounds memory read flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash. (CVE-2011-1552) Red Hat would like to thank the Evince development team for reporting CVE-2010-2642. Upstream acknowledges Jon Larimer of IBM X-Force as the original reporter of CVE-2010-2642. All users of t1lib are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All applications linked against t1lib must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 666318 - CVE-2010-2642 evince, t1lib: Heap based buffer overflow in DVI file AFM font parser 679732 - CVE-2011-0433 evince, t1lib: Heap-based buffer overflow DVI file AFM font parser 692853 - CVE-2011-1552t1lib: invalid read crash via crafted Type 1 font 692854 - CVE-2011-1553 t1lib: Use-after-free via crafted Type 1 font 692856 - CVE-2011-1554 t1lib: Off-by-one via crafted Type 1 font 692909 - CVE-2011-0764 t1lib: Invalid pointer dereference via crafted Type 1 font 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: i386: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: i386: t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: i386: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm ppc64: t1lib-5.1.2-6.el6_2.1.ppc64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.ppc64.rpm s390x: t1lib-5.1.2-6.el6_2.1.s390x.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.s390x.rpm x86_64: t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.6): Source: i386: t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm ppc64: t1lib-5.1.2-6.el6_2.1.ppc.rpm t1lib-apps-5.1.2-6.el6_2.1.ppc64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.ppc.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.ppc64.rpm t1lib-devel-5.1.2-6.el6_2.1.ppc.rpm t1lib-devel-5.1.2-6.el6_2.1.ppc64.rpm t1lib-static-5.1.2-6.el6_2.1.ppc64.rpm s390x: t1lib-5.1.2-6.el6_2.1.s390.rpm t1lib-apps-5.1.2-6.el6_2.1.s390x.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.s390.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.s390x.rpm t1lib-devel-5.1.2-6.el6_2.1.s390.rpm t1lib-devel-5.1.2-6.el6_2.1.s390x.rpm t1lib-static-5.1.2-6.el6_2.1.s390x.rpm x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: i386: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: i386: t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7.References: https://access.redhat.com/security/cve/CVE-2010-2642 https://access.redhat.com/security/cve/CVE-2011-0433 https://access.redhat.com/security/cve/CVE-2011-0764 https://access.redhat.com/security/cve/CVE-2011-1552 https://access.redhat.com/security/cve/CVE-2011-1553 https://access.redhat.com/security/cve/CVE-2011-1554 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFPHyXKXlSAg2UNWIIRAiolAJ40Z3cESS/dHhCSugnMEJFD5UJUuwCguRBu YL/xws0fFkdvEdyaDfmFjl0=kAC9 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical patch release for t1lib on Red Hat Enterprise Linux 6 addressing various vulnerabilities. Implement the upgrades without delay.. t1lib update, Red Hat security, buffer overflow fix, memory safety. . LinuxSecurity.com Team

Calendar 2 Jan 24, 2012 Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatebuffer overflow

Red Hat 6 RHSA-2012:0062-01 Moderate: t1lib Buffer Overflow Issue

Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: t1lib security update Advisory ID: RHSA-2012:0062-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2012:0062.html Issue date: 2012-01-24 CVE Names: CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 ==================================================================== 1. Summary: Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: The t1lib library allows you to rasterize bitmaps from PostScript Type 1 fonts. Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics (AFM) files. If a specially-crafted font file was opened by an application linked against t1lib, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application.(CVE-2010-2642, CVE-2011-0433) An invalid pointer dereference flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-0764) A use-after-free flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1553) An off-by-one flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1554) An out-of-bounds memory read flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash. (CVE-2011-1552) Red Hat would like to thank the Evince development team for reporting CVE-2010-2642. Upstream acknowledges Jon Larimer of IBM X-Force as the original reporter of CVE-2010-2642. All users of t1lib are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All applications linked against t1lib must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 666318 - CVE-2010-2642 evince, t1lib: Heap based buffer overflow in DVI file AFM font parser 679732 - CVE-2011-0433 evince, t1lib: Heap-based buffer overflow DVI file AFM font parser 692853 - CVE-2011-1552 t1lib: invalid read crash via crafted Type 1 font 692854 - CVE-2011-1553 t1lib: Use-after-free via crafted Type1 font 692856 - CVE-2011-1554 t1lib: Off-by-one via crafted Type 1 font 692909 - CVE-2011-0764 t1lib: Invalid pointer dereference via crafted Type 1 font 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: i386: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: i386: t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: i386: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm ppc64: t1lib-5.1.2-6.el6_2.1.ppc64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.ppc64.rpm s390x: t1lib-5.1.2-6.el6_2.1.s390x.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.s390x.rpm x86_64: t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.6): Source: i386: t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm ppc64: t1lib-5.1.2-6.el6_2.1.ppc.rpm t1lib-apps-5.1.2-6.el6_2.1.ppc64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.ppc.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.ppc64.rpm t1lib-devel-5.1.2-6.el6_2.1.ppc.rpm t1lib-devel-5.1.2-6.el6_2.1.ppc64.rpm t1lib-static-5.1.2-6.el6_2.1.ppc64.rpm s390x: t1lib-5.1.2-6.el6_2.1.s390.rpm t1lib-apps-5.1.2-6.el6_2.1.s390x.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.s390.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.s390x.rpm t1lib-devel-5.1.2-6.el6_2.1.s390.rpm t1lib-devel-5.1.2-6.el6_2.1.s390x.rpm t1lib-static-5.1.2-6.el6_2.1.s390x.rpm x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: i386: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: i386: t1lib-apps-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-static-5.1.2-6.el6_2.1.i686.rpm x86_64: t1lib-5.1.2-6.el6_2.1.i686.rpm t1lib-apps-5.1.2-6.el6_2.1.x86_64.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.i686.rpm t1lib-debuginfo-5.1.2-6.el6_2.1.x86_64.rpm t1lib-devel-5.1.2-6.el6_2.1.i686.rpm t1lib-devel-5.1.2-6.el6_2.1.x86_64.rpm t1lib-static-5.1.2-6.el6_2.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7.References: https://access.redhat.com/security/cve/CVE-2010-2642 https://access.redhat.com/security/cve/CVE-2011-0433 https://access.redhat.com/security/cve/CVE-2011-0764 https://access.redhat.com/security/cve/CVE-2011-1552 https://access.redhat.com/security/cve/CVE-2011-1553 https://access.redhat.com/security/cve/CVE-2011-1554 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2012 Red Hat, Inc. . CentOS has deployed a significant patch for libjpeg to mitigate various vulnerabilities affecting their server environments.. t1lib Security Update, Red Hat Advisory, Package Fix, Moderate Severity. . LinuxSecurity.com Team

Calendar 2 Jan 24, 2012 Red Hat
Banner 1 1028x280 1708121660 1771599717
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryhigh severityUbuntu

Ubuntu 11.10: 1335-1 High: t1lib Malformed Font Crash Risk

t1lib could be made to crash or run programs as your login if it opened a specially crafted font file.. =========================================================================Ubuntu Security Notice USN-1335-1 January 19, 2012 t1lib vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: t1lib could be made to crash or run programs as your login if it opened a specially crafted font file. Software Description: - t1lib: Type 1 font rasterizer library - runtime Details: Jon Larimer discovered that t1lib did not properly parse AFM fonts. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges. (CVE-2010-2642, CVE-2011-0433) Jonathan Brossard discovered that t1lib did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash. (CVE-2011-1552, CVE-2011-1553, CVE-2011-1554) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: libt1-5 5.1.2-3ubuntu0.11.10.2 Ubuntu 11.04: libt1-5 5.1.2-3ubuntu0.11.04.2 Ubuntu 10.10: libt1-5 5.1.2-3ubuntu0.10.10.2 Ubuntu 10.04 LTS: libt1-5 5.1.2-3ubuntu0.10.04.2 In general, a standard system update will make all the necessary changes. References: CVE-2010-2642, CVE-2011-0433, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554 Package Information: https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.11.10.2 https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.11.04.2 https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.10.10.2 https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.10.04.2 . t1lib weaknesses present in Ubuntu may enable system crashes or running of unauthorized applications. It is advisable to perform an update for enhanced security.. t1lib Security, Ubuntu Update, Font Exploit, Software Patch. . LinuxSecurity.com Team

Calendar 2 Jan 19, 2012 Ubuntu
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticalcode execution

Debian: DSA-2388-1 Critical: T1lib Local Code Execution

Several vulnerabilities were discovered in t1lib, a Postscript Type 1 font rasterizer library, some of which might lead to code execution through the opening of files embedding bad fonts. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2388-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Yves-Alexis Perez January 14, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : t1lib Vulnerability : several Problem type : local Debian-specific: no CVE ID : CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 Debian Bug : 652996 Several vulnerabilities were discovered in t1lib, a Postscript Type 1 font rasterizer library, some of which might lead to code execution through the opening of files embedding bad fonts. CVE-2010-2642 A heap-based buffer overflow in the AFM font metrics parser potentially leads to the execution of arbitrary code. CVE-2011-0433 Another heap-based buffer overflow in the AFM font metrics parser potentially leads to the execution of arbitrary code. CVE-2011-0764 An invalid pointer dereference allows execution of arbitrary code using crafted Type 1 fonts. CVE-2011-1552 Another invalid pointer dereference results in an application crash, triggered by crafted Type 1 fonts. CVE-2011-1553 A use-after-free vulnerability results in an application crash, triggered by crafted Type 1 fonts. CVE-2011-1554 An off-by-one error results in an invalid memory read and application crash, triggered by crafted Type 1 fonts. For the oldstable distribution (lenny), this problem has been fixed in version 5.1.2-3+lenny1. For the stable distribution (squeeze), this problem has been fixed in version 5.1.2-3+squeeze1. For the testing distribution (wheezy), this problem has been fixedin version 5.1.2-3.3. For the unstable distribution (sid), this problem has been fixed in version 5.1.2-3.3. We recommend that you upgrade your t1lib packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Explore the recent Debian security patch for t1lib addressing multiple potential code execution risks, and guidance on performing necessary upgrades.. Debian Security,T1lib Exploit,Code Execution Risk,Heap Overflow Alert. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 15, 2012 Critical Debian
Banner 1 1028x280 1708121660 1771599717
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalUbuntu

Ubuntu: 1316-1 Critical T1lib Application Crash Advisory

t1lib could be made to crash or run programs as your login if it opened aspecially crafted font file.. =========================================================================Ubuntu Security Notice USN-1316-1 December 21, 2011 t1lib vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: t1lib could be made to crash or run programs as your login if it opened a specially crafted font file. Software Description: - t1lib: Type 1 font rasterizer library - runtime Details: Jonathan Brossard discovered that t1lib did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: libt1-5 5.1.2-3ubuntu0.11.10.1 Ubuntu 11.04: libt1-5 5.1.2-3ubuntu0.11.04.1 Ubuntu 10.10: libt1-5 5.1.2-3ubuntu0.10.10.1 Ubuntu 10.04 LTS: libt1-5 5.1.2-3ubuntu0.10.04.1 After a standard system update you need to restart your session to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1316-1 CVE-2011-0764 Package Information: https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.11.10.1 https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.11.04.1 https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.10.10.1 https://launchpad.net/ubuntu/+source/t1lib/5.1.2-3ubuntu0.10.04.1 . Boost the security of your Ubuntu systems by mitigating the vulnerabilities detailed in the USN-1316-1 advisory regarding t1lib. Timely system updates are essential. t1lib Vulnerability, Ubuntu 11.10, Application Crash, Font File Issue. .Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 21, 2011 Critical Ubuntu
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowsoftware update

Debian: DSA-1390-1 Moderate: T1lib Buffer Overflow Risk Management

Hamid Ebadi has discovered a buffer overflow the intT1_Env_GetCompletePath routine in t1lib, a Type 1 font rasterizer library. This flaw could allow an attacker to crash and application using the t1lib shared libraries, and potentially execute arbitrary code within such an application's security context.. - ------------------------------------------------------------------------Debian Security Advisory DSA-1390-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Noah Meyerhans October 18, 2007 http://www.debian.org/security/faq - ------------------------------------------------------------------------Package : t1lib Vulnerability : buffer overflow Problem type : local (remote) Debian-specific: no CVE Id(s) : CVE-2007-4033 Debian Bug : 439927 Hamid Ebadi has discovered a buffer overflow the intT1_Env_GetCompletePath routine in t1lib, a Type 1 font rasterizer library. This flaw could allow an attacker to crash and application using the t1lib shared libraries, and potentially execute arbitrary code within such an application's security context. For the stable distribution (etch), this problem has been fixed in version 5.1.0-2etch1 For the old stable distribution (sarge), this problem has been fixed in version 5.0.2-3sarge1 We recommend that you upgrade your t1lib package. Upgrade instructions - --------------------wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian 3.1 (oldstable) - ----------------------Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 andsparc. Source archives: Size/MD5 checksum: 1697086 cc5d4130b25bb8a1c930488b78930e9b Size/MD5 checksum: 315328 73b04c0083681da97813ced3783dbd02 Size/MD5 checksum: 717 d82a7a9aaeca3868a1c01f3588a59137 Architecture independent packages: Size/MD5 checksum: 607008 9f58a16450cc7c2ccd7477cc04c30fac alpha architecture (DEC Alpha) Size/MD5 checksum: 55804 c5a1e15a9e13fb2ba0d85bcc943f6c6c Size/MD5 checksum: 171702 0ac97fe5a81fe188e6bd1ff0fc41baa8 Size/MD5 checksum: 250490 e06881a3fa3c1a75e4a0f5a4c3b1ec4d amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 57148 0a0b216df77ba48431a63ebbedc0233c Size/MD5 checksum: 155504 51b66ac279d7c9fb4ea053aa6cc7aa2d Size/MD5 checksum: 186478 7c929716eaafbff8ee664e5836fcd864 hppa architecture (HP PA RISC) Size/MD5 checksum: 58626 6aee72f7f31daecfb528ee1986984b29 Size/MD5 checksum: 173154 d0617135ef8abf2d326e1ed99ed24f79 Size/MD5 checksum: 209586 fed03ca1e54caca0e601617392271387 i386 architecture (Intel ia32) Size/MD5 checksum: 171504 ad6838104a95c3a9f6933cdb072abaee Size/MD5 checksum: 144334 e65ca2e30180f0ed3d9eadc6cc62216d Size/MD5 checksum: 53630 68660615bdbb04de7c79c56efcfe4e96 ia64 architecture (Intel ia64) Size/MD5 checksum: 64650 96bee27e31af1a635d84c2d8eb6268a8 Size/MD5 checksum: 214292 38787cea2e2c8ace9abe4dee966a1d73 Size/MD5 checksum: 264602 49703884c7ae0ffb2690c0750b3f2e4b m68k architecture (Motorola Mc680x0) Size/MD5 checksum: 133396 bc072a1e6184f1024c8a7f048c2d78f3 Size/MD5 checksum: 49158 d30c3aed647407d1a20c523100aeb794 Size/MD5 checksum: 154468 4efbf0cdb5d9c768368df9b5aad30e87 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 49168 50fc0d43483c493622e718e5f462042e Size/MD5 checksum: 147794 12a727e0e4fd36b0382440a8b8319b8d Size/MD5 checksum: 20700026a68997f70a36e44be0bf7bc5537c01 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 205948 fbc4fb9813fa26baf91691e6cb5ce947 Size/MD5 checksum: 148340 41ea1ee7ad054bbbfe1b3fcd96d4e459 Size/MD5 checksum: 48892 2a6d1dffa7d83cde39d151490fd046a2 powerpc architecture (PowerPC) Size/MD5 checksum: 152040 a6408141be03d8ec6e4049c5d2facf5d Size/MD5 checksum: 200334 a0c24d192aff2888693c177a788ed9db Size/MD5 checksum: 52856 10f1d19d94ba0aa70674e1d6ea811163 s390 architecture (IBM S/390) Size/MD5 checksum: 179304 da7130afa570f1dd64b52679e99f52ec Size/MD5 checksum: 54932 a92f3cbd2126e32f7544cad05ee8111d Size/MD5 checksum: 158040 ee5fd3597a990fb4baee99273a49cb9e sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 188928 e3ad4dee1d75eee85b75a162b9320181 Size/MD5 checksum: 153722 d08b786567066b638ace4bd2a1358635 Size/MD5 checksum: 54586 f0465a7a36d61a756af63b8eee712f37 Debian (stable) - ---------------Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 712 b7102b98ac02154dd4412e59b944e150 Size/MD5 checksum: 13648 c2969c0da7ce6875925412faf96e60c1 Size/MD5 checksum: 1838635 a05bed4aa63637052e60690ccde70421 Architecture independent packages: Size/MD5 checksum: 608800 ad8fa2fd7fa2fd06f04c3a5351384ea4 alpha architecture (DEC Alpha) Size/MD5 checksum: 174382 5d37e43a0ce3f9fc88b96e7e9c96480e Size/MD5 checksum: 57436 3bbfade6697b24e2e6d0ef3f16b91baa Size/MD5 checksum: 254764 1e7a1d7e7e7c2604a5b1f824bed9cc0d amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 190548 574df64c18a06966c9a61a1b22d45179 Size/MD5 checksum: 159478 dcc9ddce3a3b95148f806e47bed26430 Size/MD5 checksum: 58958 2a2582d4888cd50595457fe75d6993d6 arm architecture (ARM) Size/MD5 checksum: 5733274e3b323300807d47df32293f2822df7 Size/MD5 checksum: 154304 d9eee39b52ac0fbc7124b7e42336336f Size/MD5 checksum: 176120 322a0f62bcb958d47e793ca8d02fbd25 hppa architecture (HP PA RISC) Size/MD5 checksum: 57860 97d328d50b7466a4c5497e3d2266d668 Size/MD5 checksum: 214110 6a95db459b4cec9975a5600a3d1a73b3 Size/MD5 checksum: 168606 a27b5d4295dc13b880af73703d80e97a i386 architecture (Intel ia32) Size/MD5 checksum: 53786 09ffdbb73d67dce27e2e6fed44406287 Size/MD5 checksum: 146336 e7069f1db9b00800a6e6d7f6224514de Size/MD5 checksum: 173816 7f8d112d1f7bf5adbf03c76546ffb73a ia64 architecture (Intel ia64) Size/MD5 checksum: 285398 9090d6aff007cf264f6feb2b777a3d94 Size/MD5 checksum: 230594 14b80f3aac0713ce6d41f61c7156bbea Size/MD5 checksum: 68980 77c2c4c457e42e7d78ebef72e50adac9 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 214042 042b32f4290ba2d4a21eaec381f10786 Size/MD5 checksum: 154464 52b725ac8aa9e784de4439e940474ab0 Size/MD5 checksum: 51780 b7de2c891696a44e1b8833866a061a3b mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 51694 8bf0bb3b0863525c79060be1277d9f45 Size/MD5 checksum: 154678 3aa1788adc5e9fc0b7ecee6daa0dfddf Size/MD5 checksum: 212940 c0d6e778f8685d5826e5886518167775 powerpc architecture (PowerPC) Size/MD5 checksum: 204994 388d8547673de1e2fdbb7718732a5338 Size/MD5 checksum: 155704 32c9638207954d7d2a8e65a1058a7353 Size/MD5 checksum: 54924 536812ad1c6f7262284d4bcde11b37be s390 architecture (IBM S/390) Size/MD5 checksum: 181332 0202609cf9d1fea670118d0eb90c8ca0 Size/MD5 checksum: 161772 ad015ceb7c89d3f0c73aa885c418aaf1 Size/MD5 checksum: 59272 30c65aa40d88c0a102881fdeaadc26cb sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 190592 73106752f7218fb6e27314e1b4e51305 Size/MD5 checksum: 553287701a62f6c01e138b5d90aed4aa13895 Size/MD5 checksum: 152788 7815f95c86042bf0da1ca73e5aaa814d These files will probably be moved into the stable distribution on its next update. - ---------------------------------------------------------------------------------For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu recommends a t1lib package upgrade to mitigate buffer overflow vulnerability, strengthening defenses against potential arbitrary code execution.. t1lib update, debian advisory, buffer overflow fix, software security, code execution mitigation. . LinuxSecurity.com Team

Calendar 2 Oct 18, 2007 Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here