Oval Definition:	oval:com.ubuntu.precise:def:20142241000
Revision Date: 2014-03-18 Version: 1 Title: CVE-2014-2241 on Ubuntu 12.04 LTS (precise) - medium. Description: The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType before 2.5.3 do not properly check if a subroutine exists, which allows remote attackers to cause a denial of service (assertion failure), as demonstrated by a crafted ttf file. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-2241 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'freetype' package in precise is not affected (note: 'code not present').
BACK