[Bug 617019] Re: FreeType security fixes in 2.4.2

Tue, 17 Aug 2010 10:16:04 -0700 

This bug was fixed in the package freetype - 2.3.11-1ubuntu2.2

---------------
freetype (2.3.11-1ubuntu2.2) lucid-security; urgency=low

  * SECURITY UPDATE: possible arbitrary code execution via buffer overflow
    in CFF Type2 CharStrings interpreter (LP: #617019)
    - debian/patches-freetype/CVE-2010-1797.patch: check number of operands
      in src/cff/cffgload.c.
    - CVE-2010-1797
  * SECURITY UPDATE: possible arbitrary code execution via buffer overflow
    in the ftmulti demo program (LP: #617019)
    - debian/patches-ft2demos/CVE-2010-2541.patch: use strncat and adjust
      sizes in src/ftmulti.c.
    - CVE-2010-2541
  * SECURITY UPDATE: possible arbitrary code execution via improper bounds
    checking (LP: #617019)
    - debian/patches-freetype/CVE-2010-2805.patch: fix calculation in
      src/base/ftstream.c.
    - CVE-2010-2805
  * SECURITY UPDATE: possible arbitrary code execution via improper bounds
    checking (LP: #617019)
    - debian/patches-freetype/CVE-2010-2806.patch: check string sizes in
      src/type42/t42parse.c.
    - CVE-2010-2806
  * SECURITY UPDATE: possible arbitrary code execution via improper type
    comparisons (LP: #617019)
    - debian/patches-freetype/CVE-2010-2807.patch: perform better bounds
      checking in src/smooth/ftsmooth.c, src/truetype/ttinterp.*.
    - CVE-2010-2807
  * SECURITY UPDATE: possible arbitrary code execution via memory
    corruption in Adobe Type 1 Mac Font File (LWFN) fonts (LP: #617019)
    - debian/patches-freetype/CVE-2010-2808.patch: check rlen in
      src/base/ftobjs.c.
    - CVE-2010-2808
  * SECURITY UPDATE: denial of service via bdf font (LP: #617019)
    - debian/patches-freetype/bug30135.patch: don't modify value in static
      string in src/bdf/bdflib.c.
 -- Marc Deslauriers <[email protected]>   Fri, 13 Aug 2010 08:26:33 
-0400

** Changed in: freetype (Ubuntu Lucid)
       Status: New => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-1797

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2541

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2805

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2806

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2807

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2808

** Changed in: freetype (Ubuntu Karmic)
       Status: New => Fix Released

-- 
FreeType security fixes in 2.4.2
https://bugs.launchpad.net/bugs/617019
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to