Robert Swiecki discovered several vulnerabilities in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed. Also, several buffer overflows were found in the included demo programs. For the stable distribution , these problems have been fixed in version 2.3.7-2+lenny2. For the unstable distribution , these problems have been fixed in version 2.4.0-1. We recommend that you upgrade your freetype packages.