Oval Definition:	oval:com.ubuntu.precise:def:20149658000
Revision Date: 2015-02-08 Version: 1 Title: CVE-2014-9658 on Ubuntu 12.04 LTS (precise) - medium. Description: The tt_face_load_kern function in sfnt/ttkern.c in FreeType before 2.5.4 enforces an incorrect minimum table length, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted TrueType font. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-9658 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'freetype' package in precise was vulnerable but has been fixed (note: '2.4.8-1ubuntu2.2').
BACK