Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleLinuxELSA-2015-0696
HistoryMar 17, 2015 - 12:00 a.m.

freetype security update

2015-03-1700:00:00
linux.oracle.com
11

0.036 Low

EPSS

Percentile

90.6%

JSON

[2.3.11-15.el6_6.1]

  • Fixes CVE-2014-9657
    • Check minimum size of record_size.
  • Fixes CVE-2014-9658
    • Use correct value for minimum table length test.
  • Fixes CVE-2014-9675
    • New macro that checks one character more than strncmp.
  • Fixes CVE-2014-9660
    • Check _BDF_GLYPH_BITS.
  • Fixes CVE-2014-9661
    • Initialize face->ttf_size.
    • Always set face->ttf_size directly.
    • Exclusively use the truetype font driver for loading
      the font contained in the sfnts array.
  • Fixes CVE-2014-9663
    • Fix order of validity tests.
  • Fixes CVE-2014-9664
    • Add another boundary testing.
    • Fix boundary testing.
  • Fixes CVE-2014-9667
    • Protect against addition overflow.
  • Fixes CVE-2014-9669
    • Protect against overflow in additions and multiplications.
  • Fixes CVE-2014-9670
    • Add sanity checks for row and column values.
  • Fixes CVE-2014-9671
    • Check size and offset values.
  • Fixes CVE-2014-9673
    • Fix integer overflow by a broken POST table in resource-fork.
  • Fixes CVE-2014-9674
    • Fix integer overflow by a broken POST table in resource-fork.
    • Additional overflow check in the summation of POST fragment lengths.
  • Work around behaviour of X11s pcfWriteFont and pcfReadFont functions
  • Resolves: #1197737
    [2.3.11-15]
  • Fix CVE-2012-5669
    (Use correct array size for checking glyph_enc)
  • Resolves: #903543

Related

veracode 14
nessus 35
openvas 34
centos 2
redhat 2
amazon 2
f5 3
ibm 4
debian 5
osv 2
mageia 1
fedora 4
gentoo 2
securityvulns 4
ubuntu 2
ubuntucve 14
cve 14
debiancve 14
prion 14
cvelist 14
slackware 1
oraclelinux 1
androidsecurity 1
veracode
veracode
NULL Pointer Dereference
2019-05-02 05:12:38
Integer Overflow
2019-05-02 05:12:39
Integer Overflow
2019-05-02 05:12:39
nessus
nessus
Oracle Linux 6 / 7 : freetype (ELSA-2015-0696)
2015-03-18 00:00:00
F5 Networks BIG-IP : Multiple FreeType vulnerabilities (K16900)
2016-05-31 00:00:00
OracleVM 3.3 : freetype (OVMSA-2015-0036)
2015-03-20 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2015-0696)
2015-10-06 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-502)
2015-09-08 00:00:00
RedHat Update for freetype RHSA-2015:0696-01
2015-03-19 00:00:00
centos
centos
freetype security update
2015-03-18 18:53:49
freetype security update
2013-01-31 21:55:44
redhat
redhat
(RHSA-2015:0696) Important: freetype security update
2015-03-17 16:08:39
(RHSA-2013:0216) Important: freetype security update
2013-01-31 00:00:00
amazon
amazon
Important: freetype
2015-04-01 13:56:00
Important: freetype
2013-02-03 12:34:00
f5
f5
K16900 : Multiple FreeType vulnerabilities
2015-07-09 00:00:00
SOL15095307 - BDF parsing vulnerability CVE-2012-5669
2016-02-01 00:00:00
K15095307 : BDF parsing vulnerability CVE-2012-5669
2016-02-02 00:00:00
ibm
ibm
Security Bulletin: PowerKVM is affected by freetype vulnerabilities (Multiple CVEs)
2018-06-18 01:28:15
Security Bulletin: IBM Flex System Manager (FSM) is affected by multiple freetype2 vulnerabilities
2018-06-18 01:32:58
Security Bulletin: Vulnerabilities in krb5, giflib and freetype2 affect IBM BladeCenter Advanced Management Module (AMM) and IBM Flex System Chassis Management Module (CMM)
2023-04-14 14:32:25
debian
debian
[SECURITY] [DSA 3188-1] freetype security update
2015-03-15 19:49:22
[SECURITY] [DLA 185-1] freetype security update
2015-03-31 23:30:56
[SECURITY] [DSA 3461-1] freetype security update
2016-01-31 08:11:39
osv
osv
freetype - security update
2015-03-15 00:00:00
freetype - security update
2015-04-01 00:00:00
mageia
mageia
Updated freetype2 packages fix security vulnerabilities
2015-02-25 00:20:13
fedora
fedora
[SECURITY] Fedora 21 Update: freetype-2.5.3-15.fc21
2015-02-19 18:01:31
[SECURITY] Fedora 20 Update: freetype-2.5.0-9.fc20
2015-02-20 08:31:09
[SECURITY] Fedora 17 Update: freetype-2.4.8-4.fc17
2013-02-12 05:14:15
gentoo
gentoo
FreeType: Multiple vulnerabilities
2015-03-08 00:00:00
FreeType: Multiple vulnerabilities
2014-02-11 00:00:00
securityvulns
securityvulns
Freetype multiple security vulnerabilities
2015-03-08 00:00:00
[USN-2510-1] FreeType vulnerabilities
2015-03-08 00:00:00
[USN-1686-1] FreeType vulnerabilities
2013-01-14 00:00:00
ubuntu
ubuntu
FreeType vulnerabilities
2015-02-24 00:00:00
FreeType vulnerabilities
2013-01-14 00:00:00
ubuntucve
ubuntucve
CVE-2014-9673
2015-02-08 00:00:00
CVE-2014-9664
2015-02-08 00:00:00
CVE-2014-9671
2015-02-08 00:00:00
cve
cve
CVE-2014-9663
2015-02-08 11:59:00
CVE-2014-9667
2015-02-08 11:59:00
CVE-2014-9669
2015-02-08 11:59:00
debiancve
debiancve
CVE-2014-9660
2015-02-08 11:59:00
CVE-2014-9667
2015-02-08 11:59:00
CVE-2014-9671
2015-02-08 11:59:00
prion
prion
Integer overflow
2015-02-08 11:59:00
Out-of-bounds
2013-01-24 21:55:00
Out-of-bounds
2015-02-08 11:59:00
cvelist
cvelist
CVE-2014-9673
2015-02-08 11:00:00
CVE-2014-9669
2015-02-08 11:00:00
CVE-2014-9667
2015-02-08 11:00:00
slackware
slackware
freetype
2013-01-15 20:21:38
oraclelinux
oraclelinux
freetype security update
2013-01-31 00:00:00
androidsecurity
androidsecurity
Android Security Bulletin—November 2016
2016-11-07 00:00:00

0.036 Low

EPSS

Percentile

90.6%

JSON
Related for ELSA-2015-0696
veracode14nessus35openvas34centos2redhat2amazon2f53ibm4debian5osv2mageia1fedora4gentoo2securityvulns4ubuntu2ubuntucve14cve14debiancve14prion14cvelist14slackware1oraclelinux1androidsecurity1