Nom du paquet
freetype2
Date
2010-11-16
Advisory ID
MDVSA-2010:235
Affected versions
CS4.0 x86_64 , CS4.0 i586

Problem description

Multiple vulnerabilities were discovered and corrected in freetype2:

An error exists in the "ft_var_readpackedpoints()" function in
src/truetype/ttgxvar.c when processing TrueType GX fonts and can
be exploited to cause a heap-based buffer overflow via a specially
crafted font (CVE-2010-3855).

The updated packages have been patched to correct these issues.

Updated packages

CS4.0 x86_64

 c19152256818aff210dde26c75e588d7  corporate/4.0/x86_64/lib64freetype6-2.1.10-9.14.20060mlcs4.x86_64.rpm
 ee453b7d6affc8830283e5f2366edf72  corporate/4.0/x86_64/lib64freetype6-devel-2.1.10-9.14.20060mlcs4.x86_64.rpm
 7ea2ccaeeccf5250f053eec9c74b1d9a  corporate/4.0/x86_64/lib64freetype6-static-devel-2.1.10-9.14.20060mlcs4.x86_64.rpm 
 08ee97b65dff2197555a55ffb8aabcde  corporate/4.0/SRPMS/freetype2-2.1.10-9.14.20060mlcs4.src.rpm

CS4.0 i586

 8fda305a5fae4aefca37ba2830b1a345  corporate/4.0/i586/libfreetype6-2.1.10-9.14.20060mlcs4.i586.rpm
 2b33f336eaa4105112adbac8780c7be1  corporate/4.0/i586/libfreetype6-devel-2.1.10-9.14.20060mlcs4.i586.rpm
 129a3208e9f5c6a1c10660930736bb5c  corporate/4.0/i586/libfreetype6-static-devel-2.1.10-9.14.20060mlcs4.i586.rpm 
 08ee97b65dff2197555a55ffb8aabcde  corporate/4.0/SRPMS/freetype2-2.1.10-9.14.20060mlcs4.src.rpm

References