-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sat, 14 Feb 2004 13:44:41 -0500
Source: xfree86
Binary: xserver-common xlibs-dev xfs xfree86-common xfonts-pex x-window-system xlibmesa-dev xspecs xlibmesa3 xfonts-cyrillic xlibmesa3-dbg xserver-xfree86 xlibs-dbg libxaw6 libxaw7 xterm xvfb xfonts-scalable xfonts-75dpi xlib6g proxymngr libxaw6-dev xlibs-pic libdps1-dbg xlib6g-dev xfonts-base xutils libxaw7-dev xnest xlibs libxaw6-dbg xmh lbxproxy libxaw7-dbg xfonts-base-transcoded xbase-clients xprt xlibosmesa3 x-window-system-core xlibosmesa-dev twm xfwp xfonts-100dpi-transcoded xlibosmesa3-dbg xfonts-100dpi xdm libdps-dev xfonts-75dpi-transcoded libdps1
Architecture: i386
Version: 4.1.0-16woody3
Distribution: stable-security
Urgency: high
Maintainer: Debian/i386 Build Daemon <buildd@cyberhqz.com>
Changed-By: Branden Robinson <branden@debian.org>
Description: 
 lbxproxy   - Low Bandwidth X (LBX) proxy server
 libdps-dev - Display PostScript (DPS) client library development files
 libdps1    - Display PostScript (DPS) client library
 libdps1-dbg - Display PostScript (DPS) client library (unstripped)
 libxaw6    - X Athena widget set library (version 6)
 libxaw6-dbg - X Athena widget set library (version 6) (unstripped)
 libxaw6-dev - X Athena widget set library development files (version 6)
 libxaw7    - X Athena widget set library
 libxaw7-dbg - X Athena widget set library (unstripped)
 libxaw7-dev - X Athena widget set library development files
 proxymngr  - X proxy services manager
 twm        - Tab window manager
 x-window-system-core - X Window System core components
 xbase-clients - miscellaneous X clients
 xdm        - X display manager
 xfs        - X font server
 xfwp       - X firewall proxy server
 xlibmesa-dev - XFree86 version of Mesa 3D graphics library development files
 xlibmesa3  - XFree86 version of Mesa 3D graphics library
 xlibmesa3-dbg - XFree86 version of Mesa 3D graphics library (unstripped)
 xlibosmesa-dev - Mesa/XFree86 off-screen rendering library development files
 xlibosmesa3 - Mesa/XFree86 off-screen rendering library
 xlibosmesa3-dbg - Mesa/XFree86 off-screen rendering library (unstripped)
 xlibs      - X Window System client libraries
 xlibs-dbg  - X Window System client libraries (unstripped)
 xlibs-dev  - X Window System client library development files
 xlibs-pic  - X Window System client extension library PIC archives
 xmh        - X interface to the MH mail system
 xnest      - nested X server
 xprt       - X print server
 xserver-common - files and utilities common to all X servers
 xserver-xfree86 - the XFree86 X server
 xterm      - X terminal emulator
 xutils     - X Window System utility programs
 xvfb       - virtual framebuffer X server
Closes: 232378
Changes: 
 xfree86 (4.1.0-16woody3) stable-security; urgency=high
 .
   * Security update release.  Resolves the following issues:
     + CAN-2004-0083: Buffer overflow in ReadFontAlias from dirfile.c of
       XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to
       execute arbitrary code via a font alias file (font.alias) with a long
       token, a different vulnerability than CAN-2004-0084.
     + CAN-2004-0084: Buffer overflow in the ReadFontAlias function in XFree86
       4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows
       local or remote authenticated users to execute arbitrary code via a
       malformed entry in the font alias (font.alias) file, a different
       vulnerability than CAN-2004-0083.
     + CAN-2004-0106: Miscellaneous additional flaws in XFree86's handling of
       font files.
 .
   * Fix multiple buffer overflows and insufficiently rigorous input validation
     in the X11R6 fontfile library.  (Closes: #232378)
     - debian/patches/075_SECURITY_libfontfile_vulnerabilities.diff
Files: 
 8fd933be5148c54315e74b44a5deafe9 132670 x11 optional lbxproxy_4.1.0-16woody3_i386.deb
 afa404de8a8d5d1521a7eca0538ac9a3 168686 libs optional libdps1_4.1.0-16woody3_i386.deb
 cbe7420b075b67da67b8789b6cbb725f 409658 devel extra libdps1-dbg_4.1.0-16woody3_i386.deb
 6ae969a18d98034c4b4bd76bcaa94e1a 229904 devel optional libdps-dev_4.1.0-16woody3_i386.deb
 0bf399352601a5d85d045e54526141bf 166638 libs optional libxaw6_4.1.0-16woody3_i386.deb
 b6a76734451cd4c7ef621a4ae19142da 334448 devel extra libxaw6-dbg_4.1.0-16woody3_i386.deb
 a2e05d31cb36934678ab04e6349b8c96 292824 devel extra libxaw6-dev_4.1.0-16woody3_i386.deb
 82cbb021b93e8f8d034473216db30117 213508 libs optional libxaw7_4.1.0-16woody3_i386.deb
 0ac9482dee086b2cfa654dc1510b16d2 434096 devel extra libxaw7-dbg_4.1.0-16woody3_i386.deb
 5f20239b084db45e960436be23b2a27d 292706 devel optional libxaw7-dev_4.1.0-16woody3_i386.deb
 b48f4d668795312c344346059b3657fa 76620 x11 optional proxymngr_4.1.0-16woody3_i386.deb
 4d6bbf3c6f2f70f71d29170d69282758 151884 x11 optional twm_4.1.0-16woody3_i386.deb
 8d85a2eea80d8f53cac2d216b968b16e 1456542 x11 optional xbase-clients_4.1.0-16woody3_i386.deb
 47d178a64a019cba82191586e57d0e18 171308 x11 optional xdm_4.1.0-16woody3_i386.deb
 9e7d073d06ccddd54cbde2886ea183ad 275912 x11 optional xfs_4.1.0-16woody3_i386.deb
 ac65ed49b9e75643a98c74f070af0140 81182 x11 optional xfwp_4.1.0-16woody3_i386.deb
 86c59b02ecc47fabfd9cfc465f13d8cb 3422738 libs optional xlibmesa3_4.1.0-16woody3_i386.deb
 7c1d5d921f3e9b04bb859f51a455dc1b 866048 devel extra xlibmesa3-dbg_4.1.0-16woody3_i386.deb
 3cf2ffa3778058979538d076e91764b2 552776 devel optional xlibmesa-dev_4.1.0-16woody3_i386.deb
 61d026c97a2b4ad4c0ddc7c8b7d1f8b4 462858 libs optional xlibosmesa3_4.1.0-16woody3_i386.deb
 168b6cca3a7beee21eacfe3d820e3522 964398 devel extra xlibosmesa3-dbg_4.1.0-16woody3_i386.deb
 03607d57e32fe11ea64c865d88ee0c7c 522760 devel optional xlibosmesa-dev_4.1.0-16woody3_i386.deb
 9fc5ccbdb5c6e233d395ef32e34e6aaa 1224468 libs optional xlibs_4.1.0-16woody3_i386.deb
 6ac8b666fbbf6fde1c7b65b59eee70c1 2534836 devel extra xlibs-dbg_4.1.0-16woody3_i386.deb
 d6a7c219d864f882c0f42ed0aaf20ef0 2724422 devel optional xlibs-dev_4.1.0-16woody3_i386.deb
 b3db648eda102508d53a919319dea950 73606 devel optional xlibs-pic_4.1.0-16woody3_i386.deb
 6389e463ac7d91a5d71a21942eb4fee2 124744 mail extra xmh_4.1.0-16woody3_i386.deb
 69d96f30c7c8b2334f8592dcc4f0f74c 1394032 x11 optional xnest_4.1.0-16woody3_i386.deb
 26a6f080672016e7f0a6a0e785bda1a7 1123578 x11 optional xprt_4.1.0-16woody3_i386.deb
 ad204ec13b3e5c79e8090c3c48047579 219886 x11 optional xserver-common_4.1.0-16woody3_i386.deb
 fb63bf9f30f357d1121eaaebda34361a 4335684 x11 optional xserver-xfree86_4.1.0-16woody3_i386.deb
 b59df2a7d91059e0489419b2beab425c 484580 x11 optional xterm_4.1.0-16woody3_i386.deb
 e7cec6cb1f9d06746e069fe1b6592785 602530 x11 optional xutils_4.1.0-16woody3_i386.deb
 dd7a1edff3909eaa4f5e6830063082af 1497014 x11 optional xvfb_4.1.0-16woody3_i386.deb
 22964ce875683607f68adefae2529c0b 60650 x11 optional x-window-system-core_4.1.0-16woody3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAMWSOArxCt0PiXR4RAn81AJ0cvLeD8IDwgAUQEoIyJ8TPZJ0wuQCfTztb
QEwgVq2bFXT8y5HDnG7IPTE=
=KLnn
-----END PGP SIGNATURE-----