6 matches found
SUSE CVE-2006-0747
Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values...
Debian Security Advisory DSA 1095-1 (freetype)
The remote host is missing an update to freetype announced via advisory DSA 1095-1. Several problems have been discovered in the FreeType 2 font engine. The Common vulnerabilities and Exposures project identifies the following problems: CVE-2006-0747 Several integer underflows have been discovere...
Ubuntu 5.04 / 5.10 / 6.06 LTS : freetype vulnerabilities (USN-291-1)
Several integer overflows have been discovered in the FreeType library. By tricking a user into installing and/or opening a specially crafted font file, these could be exploited to execute arbitrary code with the privileges of that user. Note that Tenable Network Security has extracted the...
RHEL 2.1 / 3 / 4 : freetype (RHSA-2006:0500)
Updated freetype packages that fix several security flaws are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. FreeType is a free, high-quality, and portable font engine. Chris Evans discovered several...
freetype security update
CentOS Errata and Security Advisory CESA-2006:0500-01 Updated freetype packages that fix several security flaws are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. FreeType is a free, high-quality, an...
CVE-2006-0747
CVE-2006-0747 concerns the FreeType font engine. The public details in the initial document describe an integer underflow in FreeType before 2.2 triggered by a font file with an odd number of blue values, causing a crash (denial of service) when the value is decremented by 2 in a context assuming...