Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200806-10 Normal: FreeType User-Assisted Code Execution

gentoo
Calendar Grey June 24, 2008
Dist Gentoo Esm H88
Reported vulnerabilities in FreeType on Gentoo might enable user-assisted execution of arbitrary code. It is advisable to update promptly.
Font parsing vulnerabilities in FreeType might lead to user-assisted execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200806-10 https://security.gentoo.org/ Severity: Normal Title: FreeType: User-assisted execution of arbitrary code Date: June 23, 2008 Bugs: #225851 ID: 200806-10

Synopsis ======= Font parsing vulnerabilities in FreeType might lead to user-assisted execution of arbitrary code.
Background ========= FreeType is a font rendering library for TrueType Font (TTF) and Printer Font Binary (PFB).
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/freetype < 2.3.6 >= 2.3.6
========== Regenrecht reported multiple vulnerabilities in FreeType via iDefense:
* An integer overflow when parsing values in the Private dictionary ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo execution risk font parsing normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo execution risk font parsing normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here