Описание
Security update for freetype2
This update for freetype2 fixes the following issues:
- CVE-2020-15999: fixed a heap buffer overflow found in the handling of embedded PNG bitmaps (bsc#1177914).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.2
freetype2-devel-2.10.1-lp152.2.5.1
freetype2-devel-32bit-2.10.1-lp152.2.5.1
freetype2-profile-tti35-2.10.1-lp152.2.5.1
ft2demos-2.10.1-lp152.2.5.1
ftbench-2.10.1-lp152.2.5.1
ftdiff-2.10.1-lp152.2.5.1
ftdump-2.10.1-lp152.2.5.1
ftgamma-2.10.1-lp152.2.5.1
ftgrid-2.10.1-lp152.2.5.1
ftinspect-2.10.1-lp152.2.5.1
ftlint-2.10.1-lp152.2.5.1
ftmulti-2.10.1-lp152.2.5.1
ftstring-2.10.1-lp152.2.5.1
ftvalid-2.10.1-lp152.2.5.1
ftview-2.10.1-lp152.2.5.1
libfreetype6-2.10.1-lp152.2.5.1
libfreetype6-32bit-2.10.1-lp152.2.5.1
Ссылки
- E-Mail link for openSUSE-SU-2020:1744-1
- SUSE Security Ratings
- SUSE Bug 1177914
- SUSE CVE CVE-2020-15999 page
Описание
Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.2:freetype2-devel-2.10.1-lp152.2.5.1
openSUSE Leap 15.2:freetype2-devel-32bit-2.10.1-lp152.2.5.1
openSUSE Leap 15.2:freetype2-profile-tti35-2.10.1-lp152.2.5.1
openSUSE Leap 15.2:ft2demos-2.10.1-lp152.2.5.1
Ссылки
- CVE-2020-15999
- SUSE Bug 1177914
- SUSE Bug 1177936
- SUSE Bug 1178824
- SUSE Bug 1178894