FreeType vulnerability

2009-04-27T00:00:00
ID USN-767-1
Type ubuntu
Reporter Ubuntu
Modified 2009-04-27T00:00:00

Description

Tavis Ormandy discovered that FreeType did not correctly handle certain large values in font files. If a user were tricked into using a specially crafted font file, a remote attacker could execute arbitrary code with user privileges.