Oval Definition:	oval:org.mitre.oval:def:22715
Revision Date: 2014-05-26 Version: 24 Title: ELSA-2008:0556: freetype security update (Important) Description: Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer overflow. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2008-1806 CVE-2008-1807 CVE-2008-1808 ELSA-2008:0556-02 Platform(s): Oracle Linux 5 Product(s): freetype Definition Synopsis Oracle Linux 5.x AND rpm test freetype is earlier than 0:2.2.1-20.el5_2 OR freetype-demos is earlier than 0:2.2.1-20.el5_2 OR freetype-devel is earlier than 0:2.2.1-20.el5_2
BACK