DSA-2070-1 freetype -- severalID: oval:org.secpod.oval:def:600068 | Date: (C)2011-01-28 (M)2024-02-19 |
Class: PATCH | Family: unix |
Robert Swiecki discovered several vulnerabilities in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed. Also, several buffer overflows were found in the included demo programs. For the stable distribution , these problems have been fixed in version 2.3.7-2+lenny2. For the unstable distribution , these problems have been fixed in version 2.4.0-1. We recommend that you upgrade your freetype packages.