[src/netbsd-2-0]: src/doc Pull up revision 1.2 (requested by adrianp in ticke...

[jdc <jdc%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/21c8494e28c9
branches:  netbsd-2-0
changeset: 564991:21c8494e28c9
user:      jdc <jdc%NetBSD.org@localhost>
date:      Tue Aug 29 06:40:46 2006 +0000

description:
Pull up revision 1.2 (requested by adrianp in ticket #10683).

Fix for CVE-2006-3467 via the X.Org foundation.

"Integer overflow in FreeType before 2.2 allows remote attackers to cause a
denial of service (crash) and possibly execute arbitrary code via unknown
vectors."

diffstat:

 doc/CHANGES-2.0.4 |  10 +++++++++-
 1 files changed, 9 insertions(+), 1 deletions(-)

diffs (21 lines):

diff -r b008d9e9136a -r 21c8494e28c9 doc/CHANGES-2.0.4
--- a/doc/CHANGES-2.0.4 Mon Aug 28 14:54:45 2006 +0000
+++ b/doc/CHANGES-2.0.4 Tue Aug 29 06:40:46 2006 +0000
@@ -1,4 +1,4 @@
-#      $NetBSD: CHANGES-2.0.4,v 1.1.2.42 2006/08/28 14:54:45 tron Exp $
+#      $NetBSD: CHANGES-2.0.4,v 1.1.2.43 2006/08/29 06:40:46 jdc Exp $
 
 A complete list of changes from the NetBSD 2.0.3 update to the NetBSD 2.0.4
 update.
@@ -351,3 +351,11 @@
        supplies a bad name or namelen parameter to accept(2).
        [seanb, ticket #10675]
 
+xsrc/xfree/xc/lib/font/bitmap/pcfread.c                1.2
+
+       Fix for CVE-2006-3467 via the X.Org foundation.
+       "Integer overflow in FreeType before 2.2 allows remote attackers to 
+       cause a denial of service (crash) and possibly execute arbitrary code 
+       via unknown vectors."
+       [adrianp, ticket #10683]
+