[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1454 freetype -- integer overflow

ID: oval:org.mitre.oval:def:8204Date: (C)2009-12-15   (M)2021-06-02
Class: PATCHFamily: unix




Greg MacManus discovered an integer overflow in the font handling of libfreetype, a FreeType 2 font engine, which might lead to denial of service or possibly the execution of arbitrary code if a user is tricked into opening a malformed font. For the old stable distribution (sarge) this problem will be fixed soon. For the stable distribution (etch), this problem has been fixed in version 2.2.1-5+etch2. For the unstable distribution (sid), this problem has been fixed in version 2.3.5-1. We recommend that you upgrade your freetype packages.

Platform:
Debian 4.0
Product:
freetype
Reference:
DSA-1454
CVE-2007-1351
CVE    1
CVE-2007-1351
CPE    1
cpe:/o:debian:debian_linux:4.0

© SecPod Technologies