Medium: t1lib

2012-02-02T14:26:00
ID ALAS-2012-40
Type amazon
Reporter Amazon
Modified 2014-09-14T15:15:00

Description

Issue Overview:

Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics (AFM) files. If a specially-crafted font file was opened by an application linked against t1lib, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-2642 __, CVE-2011-0433 __)

An invalid pointer dereference flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-0764 __)

A use-after-free flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1553 __)

An off-by-one flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2011-1554 __)

An out-of-bounds memory read flaw was found in t1lib. A specially-crafted font file could, when opened, cause an application linked against t1lib to crash. (CVE-2011-1552 __)

Affected Packages:

t1lib

Issue Correction:
Run yum update t1lib to update your system.

New Packages:

i686:  
    t1lib-debuginfo-5.1.2-6.5.amzn1.i686  
    t1lib-5.1.2-6.5.amzn1.i686  
    t1lib-static-5.1.2-6.5.amzn1.i686  
    t1lib-devel-5.1.2-6.5.amzn1.i686  
    t1lib-apps-5.1.2-6.5.amzn1.i686

src:  
    t1lib-5.1.2-6.5.amzn1.src

x86_64:  
    t1lib-static-5.1.2-6.5.amzn1.x86_64  
    t1lib-debuginfo-5.1.2-6.5.amzn1.x86_64  
    t1lib-apps-5.1.2-6.5.amzn1.x86_64  
    t1lib-devel-5.1.2-6.5.amzn1.x86_64  
    t1lib-5.1.2-6.5.amzn1.x86_64