Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

Ubuntu 22.04 LTS USN-5528-1 Moderate: FreeType Security Risks

ubuntu
Calendar Grey July 20, 2022
Dist Ubuntu Esm H88
Ensure your Ubuntu installations are patched to address FreeType vulnerabilities. Understand the consequences, severity levels, and implement required solutions.
Several security issues were fixed in FreeType.

Summary

Several security issues were fixed in FreeType.

Software Description:

- freetype: FreeType 2 is a font engine library

Details:

It was discovered that FreeType did not correctly handle certain malformed

font files. If a user were tricked into using a specially crafted font

file, a remote attacker could cause FreeType to crash, or possibly execute

arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
  libfreetype6                    2.11.1+dfsg-1ubuntu0.1

Ubuntu 20.04 LTS:
  libfreetype6                    2.10.1-2ubuntu0.2

Ubuntu 18.04 LTS:
  libfreetype6                    2.8.1-2ubuntu2.2

After a standard system update you need to restart your session to make all
the necessary changes.

References

https://ubuntu.com/security/notices/USN-5528-1

CVE-2022-27404, CVE-2022-27405, CVE-2022-27406, CVE-2022-31782

July 20, 2022

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.