13 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-6942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the InsGETVARIATION function within ttinterp.c could lead to DoS via a crafted...
RHEL 5 : freetype (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - freetype: parsecharstrings function in type1/t1load.c does not ensure that a font contains a glyph name...
Mageia: Security Advisory (MGASA-2018-0140)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:1353-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : freetype2 (openSUSE-2020-704)
This update for freetype2 to version 2.10.1 fixes the following issues : Security issue fixed : - CVE-2018-6942: Fixed a NULL pointer dereference within ttinerp.c bsc1079603. Non-security issues fixed : - Update to version 2.10.1 - The bytecode hinting of OpenType variation fonts was flawed, sinc...
openSUSE: Security Advisory for freetype2 (openSUSE-SU-2020:0704-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:0704-1 Security update for freetype2
This update for freetype2 to version 2.10.1 fixes the following issues: Security issue fixed: - CVE-2018-6942: Fixed a NULL pointer dereference within ttinerp.c bsc1079603. Non-security issues fixed: - Update to version 2.10.1 The bytecode hinting of OpenType variation fonts was flawed, since the...
Security update for freetype2 (moderate)
openSUSE Security Update: Security update for freetype2 Announcement ID: openSUSE-SU-2020:0704-1 Rating: moderate References: 1079603 1091109 Cross-References: CVE-2018-6942 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
SUSE SLED15 / SLES15 Security Update : freetype2 (SUSE-SU-2020:1353-1)
This update for freetype2 to version 2.10.1 fixes the following issues : Security issue fixed : CVE-2018-6942: Fixed a NULL pointer dereference within ttinerp.c bsc1079603. Non-security issues fixed : Update to version 2.10.1 - The bytecode hinting of OpenType variation fonts was flawed, since th...
Photon OS 2.0: Freetype2 PHSA-2018-2.0-0058
An update of the freetype2 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0058. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Updated freetype2 packages fix security vulnerability
An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the InsGETVARIATION function within ttinterp.c could lead to DoS via a crafted font file CVE-2018-6942...
Fedora 27 : freetype (2018-07a3e36499)
Security fix for CVE-2018-6942. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...
CVE-2018-6942
CVE-2018-6942 affects FreeType 2 up to 2.9, where a NULL pointer dereference in the Ins_GETVARIATION() function (ttinterp.c) can cause DoS via a crafted font file. Connected advisories note this vulnerability was fixed in newer FreeType releases (e.g., OpenSUSE/OpenSUSE-2020-704 and SUSE updates)...