Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:0462-1

Опубликовано: 16 фев. 2018
Источник: suse-cvrf

Описание

Security update for freetype2

This update for freetype2 fixes the following issues:

Security issue fixed:

  • CVE-2016-10244: The parse_charstrings function in type1/t1load.c did not ensure that a font contains a glyph name, which allowed remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted file (bsc#1028103).

  • CVE-2017-8105: Fixed an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.ca (bsc#1035807)

  • CVE-2017-8287: an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c (bsc#1036457)

Список пакетов

SUSE Linux Enterprise Server 11 SP4
freetype2-2.3.7-25.45.5.1
freetype2-32bit-2.3.7-25.45.5.1
freetype2-x86-2.3.7-25.45.5.1
ft2demos-2.3.7-25.45.5.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
freetype2-2.3.7-25.45.5.1
freetype2-32bit-2.3.7-25.45.5.1
freetype2-x86-2.3.7-25.45.5.1
ft2demos-2.3.7-25.45.5.1
SUSE Linux Enterprise Software Development Kit 11 SP4
freetype2-devel-2.3.7-25.45.5.1
freetype2-devel-32bit-2.3.7-25.45.5.1

Ссылки

Описание

The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted file.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:freetype2-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:freetype2-32bit-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:freetype2-x86-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:ft2demos-2.3.7-25.45.5.1
Ссылки

Описание

FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:freetype2-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:freetype2-32bit-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:freetype2-x86-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:ft2demos-2.3.7-25.45.5.1
Ссылки

Описание

FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:freetype2-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:freetype2-32bit-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:freetype2-x86-2.3.7-25.45.5.1
SUSE Linux Enterprise Server 11 SP4:ft2demos-2.3.7-25.45.5.1
Ссылки