Lucene search

DebianDEBIAN:DSA-3461-1:EBA43

HistoryJan 31, 2016 - 8:11 a.m.

[SECURITY] [DSA 3461-1] freetype security update

2016-01-3108:11:39

lists.debian.org

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

90.1%

JSON

Debian Security Advisory DSA-3461-1 [email protected]
https://www.debian.org/security/ Sebastien Delafond
January 30, 2016 https://www.debian.org/security/faq

Package : freetype
CVE ID : CVE-2014-9674
Debian Bug : 777656

Mateusz Jurczyk discovered multiple vulnerabilities in
Freetype. Opening malformed fonts may result in denial of service or
the execution of arbitrary code.

For the oldstable distribution (wheezy), this problem has been fixed
in version 2.4.9-1.1+deb7u3.

We recommend that you upgrade your freetype packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7allfreetype< 2.4.9-1.1+deb7u3freetype_2.4.9-1.1+deb7u3_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	7	all	freetype	< 2.4.9-1.1+deb7u3	freetype_2.4.9-1.1+deb7u3_all.deb

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

90.1%

JSON

Related for DEBIAN:DSA-3461-1:EBA43