CHANGES: Mention CVE-2018-6942.

author: Werner Lemberg <wl@gnu.org> 2018-04-16 19:51:37 +0200
committer: Werner Lemberg <wl@gnu.org> 2018-04-16 19:51:37 +0200
commit: 632a11f91f0d932ac498e9e6ca022c9903ab05e9 (patch)
tree: 5db1f5a2978232517fd5b529da0a6b6624954333
parent: 70ac167c47f5ca966fb578b1f215430f46915a49 (diff)
download: freetype2-632a11f91f0d932ac498e9e6ca022c9903ab05e9.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/docs/CHANGES b/docs/CHANGES
index 4b525558e..99c9d481c 100644
--- a/docs/CHANGES
+++ b/docs/CHANGES
@@ -5,6 +5,11 @@ CHANGES BETWEEN 2.9 and 2.9.1
     - Type  1  fonts  containing   flex  features  were  not  rendered
       correctly (bug introduced in version 2.9).
 
+    - CVE-2018-6942: Older FreeType versions can crash with certain
+      malformed variation fonts.
+
+        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6942
+
 
   II. MISCELLANEOUS
author	Werner Lemberg <wl@gnu.org>	2018-04-16 19:51:37 +0200
committer	Werner Lemberg <wl@gnu.org>	2018-04-16 19:51:37 +0200
commit	632a11f91f0d932ac498e9e6ca022c9903ab05e9 (patch)
tree	5db1f5a2978232517fd5b529da0a6b6624954333
parent	70ac167c47f5ca966fb578b1f215430f46915a49 (diff)
download	freetype2-632a11f91f0d932ac498e9e6ca022c9903ab05e9.tar.gz