Fedora 24: freetype Security Update 2017-3886afeb06
Summary
The FreeType engine is a free and portable font rendering
engine, developed to provide advanced font support for a variety of
platforms and environments. FreeType is a library which can open and
manages font files as well as efficiently load, hint and render
individual glyphs. FreeType is not a font server or a complete
text-rendering library.
Update Information:
This update fixes a possible heap buffer overflow.
Change Log
References
[ 1 ] Bug #1429968 - CVE-2016-10244 freetype: parse_charstrings function in type1/t1load.c does not ensure that a font contains a glyph name [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1429968
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade freetype' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html