19 matches found
MiracleLinux 4 : freetype-2.3.11-19.AXS4 (AXSA:2019-4408:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4408:01 advisory. freetype: a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c leading to information disclosure CVE-2015-9381 freetype: mishandling...
Ubuntu: Security Advisory (USN-4126-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerabilities (CVE-2015-9381, CVE-2015-9382)
Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to security vulnerabilities. The vulnerabilities concerns Freetype: a remote attacker could obtain sensitive information or cause a denial of service. Vulnerability Details CVEID: CVE-2015-93...
NewStart CGSL MAIN 4.05 : freetype Multiple Vulnerabilities (NS-SA-2020-0015)
The remote NewStart CGSL host, running version MAIN 4.05, has freetype packages installed that are affected by multiple vulnerabilities: - FreeType before 2.6.1 has a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c. CVE-2015-9381 - FreeType before 2.6.1 has a buffer over-read i...
Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2020-1491)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.2.2 : freetype (EulerOS-SA-2020-1491)
According to the versions of the freetype package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The t42parseencoding function in type42/t42parse.c in FreeType before 2.5.4 does not properly update the current position for...
Amazon Linux AMI : freetype (ALAS-2020-1348)
The version of freetype installed on the remote host is prior to 2.3.11-19.15. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1348 advisory. FreeType before 2.6.1 has a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c. CVE-2015-9381 FreeTyp...
Medium: freetype
Issue Overview: FreeType before 2.6.1 has a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c. CVE-2015-9381 FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation. CVE-2015-9382...
Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2019-2514)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2019-2148)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Scientific Linux Security Update : freetype on SL6.x i386/x86_64 (20191217)
Security Fixes : - freetype: a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c leading to information disclosure CVE-2015-9381 - freetype: mishandling psparserskipPStoken in an FTNewMemoryFace operation in skipcomment, psaux/psobjs.c, leads to a buffer over-read CVE-2015-9382 C...
RHEL 6 : freetype (RHSA-2019:4254)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:4254 advisory. FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual...
Moderate: Red Hat Security Advisory: freetype security update
An update for freetype is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
USN-4126-2 freetype vulnerabilities
USN-4126-1 fixed a vulnerability in FreeType. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. It was discovered that FreeType incorrectly handled certain font files. An attacker could possibly use this issue to access sensitive information. CVE-2015-9381,...
Debian: Security Advisory (DLA-1909-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 1909-1] freetype security update
Package : freetype Version : 2.5.2-3+deb8u4 CVE ID : CVE-2015-9381 CVE-2015-9382 CVE-2015-9383 Several newly-referenced issues have been fixed in the FreeType 2 font engine. CVE-2015-9381 heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c CVE-2015-9382 buffer over-read in...
CVE-2015-9381
FreeType before 2.6.1 has a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c...
CVE-2015-9381
FreeType before 2.6.1 has a heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c...
CVE-2015-9381
FreeType vulnerability CVE-2015-9381 affects FreeType before 2.6.1, with a heap-based buffer over-read in T1_Get_Private_Dict (type1/t1parse.c). This can lead to information disclosure. Connected sources confirm the issue is due to a memory boundary validation flaw in that function. Remediation s...