Oval Definition:oval:org.mitre.oval:def:22238
Revision Date:2014-02-24Version:56
Title:RHSA-2010:0864: freetype security update (Important)
Description:Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a heap-based buffer overflow, related to an "input stream position error" issue, a different vulnerability than CVE-2010-1797.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-2805
CVE-2010-2806
CVE-2010-2808
CVE-2010-3311
RHSA-2010:0864-02
Platform(s):Red Hat Enterprise Linux 6
Product(s):freetype
Definition Synopsis
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND Packages section
  • freetype-demos is earlier than 0:2.3.11-6.el6_0.1
  • OR freetype is earlier than 0:2.3.11-6.el6_0.1
  • OR freetype-devel is earlier than 0:2.3.11-6.el6_0.1
  • BACK