Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2016:1149-1

Опубликовано: 25 апр. 2016
Источник: suse-cvrf

Описание

Security update for freetype2

This update of the freetype2 library fixes two security issues:

  • An infinite loop in parse_encoding in t1load.c (CVE-2014-9745, bsc#945849)
  • Use of uninitialized memory in ps_parser_load_field, t42_parse_font_matrix and t1_parse_font_matrix (CVE-2014-9747, bsc#947966)

Список пакетов

SUSE Linux Enterprise Server 11 SP4
freetype2-2.3.7-25.41.4
freetype2-32bit-2.3.7-25.41.4
freetype2-x86-2.3.7-25.41.4
ft2demos-2.3.7-25.41.4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
freetype2-2.3.7-25.41.4
freetype2-32bit-2.3.7-25.41.4
freetype2-x86-2.3.7-25.41.4
ft2demos-2.3.7-25.41.4
SUSE Linux Enterprise Software Development Kit 11 SP4
freetype2-devel-2.3.7-25.41.4
freetype2-devel-32bit-2.3.7-25.41.4

Ссылки

Описание

The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (infinite loop) via a "broken number-with-base" in a Postscript stream, as demonstrated by 8#garbage.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:freetype2-2.3.7-25.41.4
SUSE Linux Enterprise Server 11 SP4:freetype2-32bit-2.3.7-25.41.4
SUSE Linux Enterprise Server 11 SP4:freetype2-x86-2.3.7-25.41.4
SUSE Linux Enterprise Server 11 SP4:ft2demos-2.3.7-25.41.4
Ссылки

Описание

The t42_parse_encoding function in type42/t42parse.c in FreeType before 2.5.4 does not properly update the current position for immediates-only mode, which allows remote attackers to cause a denial of service (infinite loop) via a Type42 font.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:freetype2-2.3.7-25.41.4
SUSE Linux Enterprise Server 11 SP4:freetype2-32bit-2.3.7-25.41.4
SUSE Linux Enterprise Server 11 SP4:freetype2-x86-2.3.7-25.41.4
SUSE Linux Enterprise Server 11 SP4:ft2demos-2.3.7-25.41.4
Ссылки
Уязвимость SUSE-SU-2016:1149-1