-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sat, 14 Feb 2004 13:44:41 -0500
Source: xfree86
Binary: xserver-common xlibs-dev xfs xfree86-common xfonts-pex x-window-system xlibmesa-dev xspecs xlibmesa3 xfonts-cyrillic xlibmesa3-dbg xserver-xfree86 xlibs-dbg libxaw6 libxaw7 xterm xvfb xfonts-scalable xfonts-75dpi xlib6g proxymngr libxaw6-dev xlibs-pic libdps1-dbg xlib6g-dev xfonts-base xutils libxaw7-dev xnest xlibs libxaw6-dbg xmh lbxproxy libxaw7-dbg xfonts-base-transcoded xbase-clients xprt xlibosmesa3 x-window-system-core xlibosmesa-dev twm xfwp xfonts-100dpi-transcoded xlibosmesa3-dbg xfonts-100dpi xdm libdps-dev xfonts-75dpi-transcoded libdps1
Architecture: alpha
Version: 4.1.0-16woody3
Distribution: stable-security
Urgency: high
Maintainer: Debian/Alpha Build Daemon <buildd@lully.debian.org>
Changed-By: Branden Robinson <branden@debian.org>
Description: 
 lbxproxy   - Low Bandwidth X (LBX) proxy server
 libdps-dev - Display PostScript (DPS) client library development files
 libdps1    - Display PostScript (DPS) client library
 libdps1-dbg - Display PostScript (DPS) client library (unstripped)
 libxaw6    - X Athena widget set library (version 6)
 libxaw6-dbg - X Athena widget set library (version 6) (unstripped)
 libxaw6-dev - X Athena widget set library development files (version 6)
 libxaw7    - X Athena widget set library
 libxaw7-dbg - X Athena widget set library (unstripped)
 libxaw7-dev - X Athena widget set library development files
 proxymngr  - X proxy services manager
 twm        - Tab window manager
 x-window-system-core - X Window System core components
 xbase-clients - miscellaneous X clients
 xdm        - X display manager
 xfs        - X font server
 xfwp       - X firewall proxy server
 xlibmesa-dev - XFree86 version of Mesa 3D graphics library development files
 xlibmesa3  - XFree86 version of Mesa 3D graphics library
 xlibmesa3-dbg - XFree86 version of Mesa 3D graphics library (unstripped)
 xlibosmesa-dev - Mesa/XFree86 off-screen rendering library development files
 xlibosmesa3 - Mesa/XFree86 off-screen rendering library
 xlibosmesa3-dbg - Mesa/XFree86 off-screen rendering library (unstripped)
 xlibs      - X Window System client libraries
 xlibs-dbg  - X Window System client libraries (unstripped)
 xlibs-dev  - X Window System client library development files
 xlibs-pic  - X Window System client extension library PIC archives
 xmh        - X interface to the MH mail system
 xnest      - nested X server
 xprt       - X print server
 xserver-common - files and utilities common to all X servers
 xserver-xfree86 - the XFree86 X server
 xterm      - X terminal emulator
 xutils     - X Window System utility programs
 xvfb       - virtual framebuffer X server
Closes: 232378
Changes: 
 xfree86 (4.1.0-16woody3) stable-security; urgency=high
 .
   * Security update release.  Resolves the following issues:
     + CAN-2004-0083: Buffer overflow in ReadFontAlias from dirfile.c of
       XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to
       execute arbitrary code via a font alias file (font.alias) with a long
       token, a different vulnerability than CAN-2004-0084.
     + CAN-2004-0084: Buffer overflow in the ReadFontAlias function in XFree86
       4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows
       local or remote authenticated users to execute arbitrary code via a
       malformed entry in the font alias (font.alias) file, a different
       vulnerability than CAN-2004-0083.
     + CAN-2004-0106: Miscellaneous additional flaws in XFree86's handling of
       font files.
 .
   * Fix multiple buffer overflows and insufficiently rigorous input validation
     in the X11R6 fontfile library.  (Closes: #232378)
     - debian/patches/075_SECURITY_libfontfile_vulnerabilities.diff
Files: 
 758b836dbfb7f2c085e40d5ae7984218 165680 x11 optional lbxproxy_4.1.0-16woody3_alpha.deb
 1a150e19d5ef4851cd2997fafccca1ae 198694 libs optional libdps1_4.1.0-16woody3_alpha.deb
 a2e7b4a2f552c547060e854ad3b918ae 779090 devel extra libdps1-dbg_4.1.0-16woody3_alpha.deb
 48661b8fd6aabcf1c288d9d42583870e 306952 devel optional libdps-dev_4.1.0-16woody3_alpha.deb
 bdefac84c3b2d45635e2823a48d97ac4 203980 libs optional libxaw6_4.1.0-16woody3_alpha.deb
 ebb71e7a58de24aacbfc122392249b25 649810 devel extra libxaw6-dbg_4.1.0-16woody3_alpha.deb
 911c46f8a39effb3b6536c24e0ceb2b1 390776 devel extra libxaw6-dev_4.1.0-16woody3_alpha.deb
 35a40bc5e6369e95dfd62e2fa653a6aa 264384 libs optional libxaw7_4.1.0-16woody3_alpha.deb
 ffe2c0fcf0cef51b0ead1271058a6d85 820950 devel extra libxaw7-dbg_4.1.0-16woody3_alpha.deb
 dca373f97a0c6493c312150be3be9a15 390656 devel optional libxaw7-dev_4.1.0-16woody3_alpha.deb
 864aafa3b5951b9dd98bc67d7acb2ebb 79366 x11 optional proxymngr_4.1.0-16woody3_alpha.deb
 8fde65115aabda3504bf399e3080ae3c 178158 x11 optional twm_4.1.0-16woody3_alpha.deb
 4d26ed9165fd6412c96fd8159588f1d3 1990968 x11 optional xbase-clients_4.1.0-16woody3_alpha.deb
 5bd521173b248c7196da277693f5c51d 190388 x11 optional xdm_4.1.0-16woody3_alpha.deb
 e0dadacdb7cd9a250b553e16ad7ebb03 375680 x11 optional xfs_4.1.0-16woody3_alpha.deb
 b2eee55ea1e688b175bed917c259125c 85230 x11 optional xfwp_4.1.0-16woody3_alpha.deb
 53c0107f5bbceb19ce056b35ff0f9179 4134766 libs optional xlibmesa3_4.1.0-16woody3_alpha.deb
 eef06cb869c824039f6940d1ee492964 1490576 devel extra xlibmesa3-dbg_4.1.0-16woody3_alpha.deb
 be4881c1a3930bfd59a7d999d882b2f0 694628 devel optional xlibmesa-dev_4.1.0-16woody3_alpha.deb
 485aa455de7b69a4d7adea891d73e871 611834 libs optional xlibosmesa3_4.1.0-16woody3_alpha.deb
 a18ceb68d3f95eca22c0ede914dc7b2a 1603908 devel extra xlibosmesa3-dbg_4.1.0-16woody3_alpha.deb
 8b270193112f6704250b9ee763b5c4e5 712440 devel optional xlibosmesa-dev_4.1.0-16woody3_alpha.deb
 039e153404dd8985d9d98cd9cb0d76c2 1373258 libs optional xlibs_4.1.0-16woody3_alpha.deb
 05d684e56419761ae7232cf96fe145ee 4394370 devel extra xlibs-dbg_4.1.0-16woody3_alpha.deb
 7b15127196cdf024935e989d5d890497 3226632 devel optional xlibs-dev_4.1.0-16woody3_alpha.deb
 06cba2d8ff875dc06d042f1a77f5d765 84834 devel optional xlibs-pic_4.1.0-16woody3_alpha.deb
 9f1ad90ee461e161766d3c87d3dedc89 151186 mail extra xmh_4.1.0-16woody3_alpha.deb
 8c996bd43cd14e6cc6b6393b26be93d8 1889484 x11 optional xnest_4.1.0-16woody3_alpha.deb
 04cbea3ac9b0694922c985a146592aef 1476292 x11 optional xprt_4.1.0-16woody3_alpha.deb
 4dc83c9cd03a7a0e02819880a828fe85 220582 x11 optional xserver-common_4.1.0-16woody3_alpha.deb
 07bb980d44578089a37f288da4db12aa 5721142 x11 optional xserver-xfree86_4.1.0-16woody3_alpha.deb
 35b63d23c16de6383ed680e5908f4725 525800 x11 optional xterm_4.1.0-16woody3_alpha.deb
 7a1c97c098e97f074263561210bcf306 713418 x11 optional xutils_4.1.0-16woody3_alpha.deb
 bb88476c1a66924cb4f74c7ee9f76ce1 2048198 x11 optional xvfb_4.1.0-16woody3_alpha.deb
 776f72c60827e8d6eafe0228c14c4302 60656 x11 optional x-window-system-core_4.1.0-16woody3_alpha.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAMV0yArxCt0PiXR4RAiT1AJ91yCCgU3MvF4yEgrGlg7sj9oAu4QCgqeqG
+lKZsRSJUOm4m1jCNp2kNnk=
=jXxz
-----END PGP SIGNATURE-----