11 matches found
Linux Distros Unpatched Vulnerability : CVE-2012-5668
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to BDF fonts and t...
SUSE: Security Advisory (SUSE-SU-2013:0195-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201402-16
Gentoo Linux Local Security Checks GLSA 201402-16 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
openSUSE Security Update : freetype2 (openSUSE-SU-2013:0165-1)
BNC795826, CVE-2012-5668.patch bdf Fix Savannah bug 37905. - src/bdf/bdflib.c bdfparsestart: Reset propssize' to zero in case of allocation error; this value gets used in a loop in - BNC795826, CVE-2012-5669.patch bdf Fix Savannah bug 37906. - src/bdf/bdflib.c bdfparseglyphs: Use correct array...
openSUSE Security Update : freetype2 (openSUSE-SU-2013:0177-1)
new license string. - BNC795826, CVE-2012-5668.patch - BNC795826, CVE-2012-5669.patch bdf Fix Savannah bug 37906. - src/bdf/bdflib.c bdfparseglyphs: Use correct array size for checking glyphenc'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
Mandriva Linux Security Advisory : freetype2 (MDVSA-2013:006)
Multiple vulnerabilities has been found and corrected in freetype2 : A NULL pointer de-reference flaw was found in the way Freetype font rendering engine handled Glyph bitmap distribution format BDF fonts. A remote attacker could provide a specially crafted BDF font file, which once processed in ...
SuSE 10 Security Update : freetype2 (ZYPP Patch Number 8433)
This update fixes : - OOB access in bdffreefont CVE-2012-5668 As well as non-security bugs : - bdf Savannah bug 37905. o src/bdf/bdflib.c bdfparsestart: Reset propssize' to zero in case of allocation error; this value gets used in a loop in %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
CVE-2012-5668
FreeType before 2.4.11 is affected by CVE-2012-5668 due to a NULL pointer dereference in bdf_free_font triggered by BDF font handling, leading to denial of service. Connected advisories confirm patches and vendor mitigations exist (e.g., updates addressing CVE-2012-5668 and related BDF fixes in 2...
freetype
New freetype packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/freetype-2.4.11-i486-1slack14.0.txz: Upgraded. This release fixes several security bugs that could...
[USN-1686-1] FreeType vulnerabilities
========================================================================== Ubuntu Security Notice USN-1686-1 January 14, 2013 freetype vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...
[BSA-078] Security Update for freetype
I uploaded new packages for freetype which fixed the following security problems: CVE-2012-5668: NULL Pointer Dereference in bdffreefont. CVE-2012-5669: Out-of-bounds read in bdfparseglyphs. CVE-2012-5670: Out-of-bounds write in bdfparseglyphs. For the squeeze-backports distribution the problems...