ELSA-2019-4254

Опубликовано: 18 дек. 2019

Источник: oracle-oval

Платформа: Oracle Linux 6

Описание

ELSA-2019-4254: freetype security update (MODERATE)

[2.3.11-19]

Fix potential buffer overflow
Resolves: #1767863

[2.3.11-18]

Fix potential buffer overflow
Resolves: #1758402

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

freetype

2.3.11-19.el6_10

freetype-demos

2.3.11-19.el6_10

freetype-devel

2.3.11-19.el6_10

Oracle Linux i686

freetype

2.3.11-19.el6_10

freetype-demos

2.3.11-19.el6_10

freetype-devel

2.3.11-19.el6_10

Связанные CVE

CVE-2015-9381

CVE-2015-9382

Ссылки на источники

Связанные уязвимости

CVE-2015-9382

CVSS3: 6.5

ubuntu

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

CVE-2015-9382

CVSS3: 4.3

redhat

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

CVE-2015-9382

CVSS3: 6.5

nvd

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

CVE-2015-9382

CVSS3: 6.5

debian

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/ ...

CVE-2015-9381

CVSS3: 8.8

ubuntu

больше 6 лет назад

FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c.