Oval Definition:	oval:com.ubuntu.precise:def:20142240000
Revision Date: 2014-03-12 Version: 1 Title: CVE-2014-2240 on Ubuntu 12.04 LTS (precise) - medium. Description: Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-2240 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'freetype' package in precise is not affected (note: 'code not present').
BACK