Описание
Security update for freetype2
This update for freetype2 fixes the following issues:
- CVE-2025-27363: Fixed out-of-bounds write when attempting to parse font subglyph structures related to TrueType GX and variable font files (bsc#1239465).
Список пакетов
SUSE Linux Enterprise Server 12 SP5-LTSS
freetype2-devel-2.6.3-7.21.1
ft2demos-2.6.3-7.21.1
libfreetype6-2.6.3-7.21.1
libfreetype6-32bit-2.6.3-7.21.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
freetype2-devel-2.6.3-7.21.1
ft2demos-2.6.3-7.21.1
libfreetype6-2.6.3-7.21.1
libfreetype6-32bit-2.6.3-7.21.1
Ссылки
- Link for SUSE-SU-2025:0960-1
- E-Mail link for SUSE-SU-2025:0960-1
- SUSE Security Ratings
- SUSE Bug 1239465
- SUSE CVE CVE-2025-27363 page
Описание
An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:freetype2-devel-2.6.3-7.21.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ft2demos-2.6.3-7.21.1
SUSE Linux Enterprise Server 12 SP5-LTSS:libfreetype6-2.6.3-7.21.1
SUSE Linux Enterprise Server 12 SP5-LTSS:libfreetype6-32bit-2.6.3-7.21.1
Ссылки
- CVE-2025-27363
- SUSE Bug 1239465