Security update for freetype2 (moderate)

An update that fixes three vulnerabilities is now available.

Description:

This update for freetype2 fixes the following issues:

• CVE-2022-27404 Fixed a segmentation fault via a crafted typeface
  (bsc#1198830).
• CVE-2022-27405 Fixed a buffer overflow via a crafted typeface
  (bsc#1198832).
• CVE-2022-27406 Fixed a segmentation fault via a crafted typeface
  (bsc#1198823).

Non-security fixes:

• Updated to version 2.10.4

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

• openSUSE Leap Micro 5.2:

  zypper in -t patch openSUSE-Leap-Micro-5.2-2022-3252=1

• openSUSE Leap 15.4:

  zypper in -t patch openSUSE-SLE-15.4-2022-3252=1

• openSUSE Leap 15.3:

  zypper in -t patch openSUSE-SLE-15.3-2022-3252=1

• SUSE Linux Enterprise Module for Desktop Applications 15-SP4:

  zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-3252=1

• SUSE Linux Enterprise Module for Desktop Applications 15-SP3:

  zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-3252=1

• SUSE Linux Enterprise Module for Basesystem 15-SP4:

  zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-3252=1

• SUSE Linux Enterprise Module for Basesystem 15-SP3:

  zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-3252=1

• SUSE Linux Enterprise Micro 5.2:

  zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-3252=1

• SUSE Linux Enterprise Micro 5.1:

  zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-3252=1