| Errata ID | 378 |
|---|---|
| Date | 2018-05-08 |
| Source package | graphite2 |
| Fixed in version | 1.3.10-1~deb8u1 |
| Description | This update addresses the following issues: * Out of bounds read in "graphite2::Pass::readPass" (CVE-2017-7771) * Heap-buffer-overflow write "lz4::decompress" (CVE-2017-7772) * Heap-buffer-overflow write "lz4::decompress" (src/Decompressor) (CVE-2017-7773) * Out of bounds read "graphite2::Silf::readGraphite" (CVE-2017-7774) * Assertion error "size() > n" (CVE-2017-7775) * Heap-buffer-overflow read "graphite2::Silf::getClassGlyph" (CVE-2017-7776) * Use of uninitialized memory "graphite2::GlyphCache::Loader::read_glyph" (CVE-2017-7777) |
| Additional notes | |
| CVE ID | CVE-2017-7771 CVE-2017-7772 CVE-2017-7773 CVE-2017-7774 CVE-2017-7775 CVE-2017-7776 CVE-2017-7777 |
| UCS Bug number | #44864 |
