This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in all affected branches.
For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.
bug #496887: CVE-2009-1194 pango: pango_glyph_string_set_size integer overflow
When creating a Bodhi update request, please include the bug IDs of the respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available and only close this bug once all affected Fedora versions are fixed.
Bodhi update submission link:
F11 / F12 are already updated to fixed upstream version (1.24+), F9 and F10 are affected.
that F9 and F10 are updated,what time?
This bug appears to have been reported against 'rawhide' during the Fedora 11 development cycle.
Changing version to '11'.
More information and reason for this action is here:
This is fixed in Fedora 11 and 12, but is still unfixed in Fedora 10. Closing it; I doubt we'll see a fix for Fedora 10 at this point.