Oval Definition:	oval:org.mitre.oval:def:21823
Revision Date: 2014-05-26 Version: 13 Title: ELSA-2007:0403: freetype security update (Moderate) Description: Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2007-2754 ELSA-2007:0403-02 Platform(s): Oracle Linux 5 Product(s): freetype Definition Synopsis Oracle Linux 5.x AND rpm test freetype is earlier than 0:2.2.1-19.el5 OR freetype-demos is earlier than 0:2.2.1-19.el5 OR freetype-devel is earlier than 0:2.2.1-19.el5
BACK