This repository has been archived by the owner on Oct 10, 2023. It is now read-only.
0.312.0
cf-buildpacks-eng
released this
20 Jul 17:34
·
57 commits
to main
since this release
Notably, this release addresses:
USN-5528-1 USN-5528-1: FreeType vulnerabilities:
- CVE-2022-27405: FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
- CVE-2022-27406: FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.
- CVE-2022-27404: FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
- CVE-2022-31782: ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.
-ii libfreetype6:amd64 2.8.1-2ubuntu2.1 amd64 FreeType 2 font engine, shared library files
-ii libfreetype6-dev:amd64 2.8.1-2ubuntu2.1 amd64 FreeType 2 font engine, development files
+ii libfreetype6:amd64 2.8.1-2ubuntu2.2 amd64 FreeType 2 font engine, shared library files
+ii libfreetype6-dev:amd64 2.8.1-2ubuntu2.2 amd64 FreeType 2 font engine, development files