Oval Definition:	oval:com.ubuntu.precise:def:20149675000
Revision Date: 2015-02-08 Version: 1 Title: CVE-2014-9675 on Ubuntu 12.04 LTS (precise) - medium. Description: bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-9675 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'freetype' package in precise was vulnerable but has been fixed (note: '2.4.8-1ubuntu2.2').
BACK