freetype -- integer overflow

ID DSA-1334
Type debian
Reporter Debian
Modified 2007-07-18T00:00:00


A problem was discovered with freetype, a FreeType2 font engine, which could allow the execution of arbitrary code via an integer overflow in specially crafted TTF files.

For the old stable distribution (sarge), this problem has been fixed in version 2.1.7-8.

We recommend that you upgrade your freetype package.