OVAL Reference oval:com.redhat.rhsa:def:20070403

Oval Definition:

oval:com.redhat.rhsa:def:20070403

Revision Date:	2007-06-11	Version:	637
Title:	RHSA-2007:0403: freetype security update (Moderate)
Description:	FreeType is a free, high-quality, portable font engine. An integer overflow flaw was found in the way the FreeType font engine processed TTF font files. If a user loaded a carefully crafted font file with a program linked against FreeType, it could cause the application to crash or execute arbitrary code. While it is uncommon for a user to explicitly load a font file, there are several application file formats which contain embedded fonts that are parsed by FreeType. (CVE-2007-2754) Users of FreeType should upgrade to these updated packages, which contain a backported patch to correct this issue.
Family:	unix	Class:	patch
Status:		Reference(s):	CVE-2007-2754 RHSA-2007:0403 RHSA-2007:0403-02 RHSA-2007:0403-02
Platform(s):	Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5	Product(s):
Definition Synopsis
Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 3 is installed AND freetype is earlier than 0:2.1.4-7.el3 AND freetype is signed with Red Hat master key freetype-devel is earlier than 0:2.1.4-7.el3 AND freetype-devel is signed with Red Hat master key OR Package Information Red Hat Enterprise Linux 4 is installed AND freetype-devel is earlier than 0:2.1.9-6.el4 AND freetype-devel is signed with Red Hat master key freetype-utils is earlier than 0:2.1.9-6.el4 AND freetype-utils is signed with Red Hat master key freetype-demos is earlier than 0:2.1.9-6.el4 AND freetype-demos is signed with Red Hat master key freetype is earlier than 0:2.1.9-6.el4 AND freetype is signed with Red Hat master key OR Package Information Red Hat Enterprise Linux 5 is installed AND freetype-devel is earlier than 0:2.2.1-19.el5 AND freetype-devel is signed with Red Hat redhatrelease key freetype is earlier than 0:2.2.1-19.el5 AND freetype is signed with Red Hat redhatrelease key freetype-demos is earlier than 0:2.2.1-19.el5 AND freetype-demos is signed with Red Hat redhatrelease key
Definition Synopsis
Release Information Red Hat Enterprise Linux 3 is installed AND freetype is earlier than 0:2.1.4-7.el3 AND freetype is signed with Red Hat master key freetype-demos is earlier than 0:2.1.4-7.el3 AND freetype-demos is signed with Red Hat master key freetype-devel is earlier than 0:2.1.4-7.el3 AND freetype-devel is signed with Red Hat master key freetype-utils is earlier than 0:2.1.4-7.el3 AND freetype-utils is signed with Red Hat master key OR Package Information Red Hat Enterprise Linux 4 is installed AND freetype is earlier than 0:2.1.9-6.el4 AND freetype is signed with Red Hat master key freetype-demos is earlier than 0:2.1.9-6.el4 AND freetype-demos is signed with Red Hat master key freetype-devel is earlier than 0:2.1.9-6.el4 AND freetype-devel is signed with Red Hat master key freetype-utils is earlier than 0:2.1.9-6.el4 AND freetype-utils is signed with Red Hat master key OR Package Information Red Hat Enterprise Linux 5 is installed AND freetype is earlier than 0:2.2.1-19.el5 AND freetype is signed with Red Hat redhatrelease key freetype-demos is earlier than 0:2.2.1-19.el5 AND freetype-demos is signed with Red Hat redhatrelease key freetype-devel is earlier than 0:2.2.1-19.el5 AND freetype-devel is signed with Red Hat redhatrelease key
Definition Synopsis
Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 4 is installed AND freetype is earlier than 0:2.1.9-6.el4 AND freetype is signed with Red Hat redhatrelease2 key freetype-demos is earlier than 0:2.1.9-6.el4 AND freetype-demos is signed with Red Hat redhatrelease2 key freetype-devel is earlier than 0:2.1.9-6.el4 AND freetype-devel is signed with Red Hat redhatrelease2 key freetype-utils is earlier than 0:2.1.9-6.el4 AND freetype-utils is signed with Red Hat redhatrelease2 key OR Package Information Red Hat Enterprise Linux 5 is installed AND freetype is earlier than 0:2.2.1-19.el5 AND freetype is signed with Red Hat redhatrelease2 key freetype-demos is earlier than 0:2.2.1-19.el5 AND freetype-demos is signed with Red Hat redhatrelease2 key freetype-devel is earlier than 0:2.2.1-19.el5 AND freetype-devel is signed with Red Hat redhatrelease2 key

BACK