[Git][security-tracker-team/security-tracker][master] Fill in details for freetype

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Mar 13 07:50:20 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
736152e6 by Moritz Muehlenhoff at 2025-03-13T08:49:53+01:00
Fill in details for freetype

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -488,8 +488,10 @@ CVE-2025-27393 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998
 CVE-2025-27392 (A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00 ...)
 	NOT-FOR-US: Siemens
 CVE-2025-27363 (An out of bounds write exists in FreeType versions 2.13.0 and below wh ...)
-	- freetype <unfixed>
+	- freetype 2.13.1+dfsg-1
 	NOTE: https://www.facebook.com/security/advisories/cve-2025-27363
+	NOTE: https://gitlab.freedesktop.org/freetype/freetype/-/issues/1322
+	NOTE: https://gitlab.freedesktop.org/freetype/freetype/-/commit/ef636696524b081f1b8819eb0c6a0b932d35757d
 CVE-2025-27179 (InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by ...)
 	NOT-FOR-US: Adobe
 CVE-2025-27178 (InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it.
 
 If needed, specify the release by adding a slash after the name of the source package.
 
+--
+freetype
 --
 frr
   coordination with the maintainer ongoing, Daniel Baumann proposing an update



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/736152e6ae83f8cdeda8ffd53b190bbae3ab6c1b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/736152e6ae83f8cdeda8ffd53b190bbae3ab6c1b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250313/1913e28a/attachment.htm>

More information about the debian-security-tracker-commits mailing list