Skip to content
This repository has been archived by the owner on Oct 10, 2023. It is now read-only.

0.312.0
Compare
Choose a tag to compare
@cf-buildpacks-eng cf-buildpacks-eng released this 20 Jul 17:34
· 57 commits to main since this release
0.312.0
44c8c79

Notably, this release addresses:

USN-5528-1 USN-5528-1: FreeType vulnerabilities:

  • CVE-2022-27405: FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
  • CVE-2022-27406: FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.
  • CVE-2022-27404: FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
  • CVE-2022-31782: ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.
-ii  libfreetype6:amd64     2.8.1-2ubuntu2.1  amd64  FreeType 2 font engine, shared library files
-ii  libfreetype6-dev:amd64 2.8.1-2ubuntu2.1  amd64  FreeType 2 font engine, development files
+ii  libfreetype6:amd64     2.8.1-2ubuntu2.2  amd64  FreeType 2 font engine, shared library files
+ii  libfreetype6-dev:amd64 2.8.1-2ubuntu2.2  amd64  FreeType 2 font engine, development files
Assets 3