Описание
Security update for freetype2
This update for freetype2 fixes the following issues:
- CVE-2025-23022: signed integer overflow in cf2_doFlex in cff/cf2intrp.c. (bsc#1235670)
Список пакетов
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
freetype2-devel-2.6.3-7.24.1
ft2demos-2.6.3-7.24.1
libfreetype6-2.6.3-7.24.1
libfreetype6-32bit-2.6.3-7.24.1
Ссылки
- Link for SUSE-SU-2025:1528-1
- E-Mail link for SUSE-SU-2025:1528-1
- SUSE Security Ratings
- SUSE Bug 1235670
- SUSE CVE CVE-2025-23022 page
Описание
FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.
Затронутые продукты
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freetype2-devel-2.6.3-7.24.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ft2demos-2.6.3-7.24.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreetype6-2.6.3-7.24.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreetype6-32bit-2.6.3-7.24.1
Ссылки
- CVE-2025-23022
- SUSE Bug 1235670