Mageia 7 MGASA-2020-0389 Critical: Freetype2 Buffer Overflow Exploit

mageia

October 20, 2020

A heap buffer overflow has been found in freetype2 before 2.10.4

Summary

A heap buffer overflow has been found in freetype2 before 2.10.4. Malformed TTF files with PNG sbit glyphs can cause a heap buffer overflow in Load_SBit_Png as libpng uses the original 32-bit values, which are saved in png_struct. If the original width and/or height are greater than 65535, the allocated buffer won't be able to fit the bitmap. (CVE-2020-15999)

References

- https://bugs.mageia.org/show_bug.cgi?id=27453

- https://security.archlinux.org/ASA-202010-10/generate

- https://www.cve.org/CVERecord?id=CVE-2020-15999

Topics Covered

security advisory heap buffer overflow freetype2 malformed files mageia

Resolution

SRPMS

- 7/tainted/freetype2-2.9.1-4.1.mga7.tainted

- 7/core/freetype2-2.9.1-4.1.mga7

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 20 Oct 2020

URL: https://advisories.mageia.org/MGASA-2020-0389.html

Type: security

CVE: CVE-2020-15999

Topics Covered

security advisory heap buffer overflow freetype2 malformed files mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 7 MGASA-2020-0389 Critical: Freetype2 Buffer Overflow Exploit

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 7 MGASA-2020-0389 Critical: Freetype2 Buffer Overflow Exploit

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!