Sicherheit: Pufferüberlauf in Freetype
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in Freetype
ID: FEDORA-2017-c09c0cc384
Distribution: Fedora
Plattformen: Fedora 25
Datum: Mo, 13. März 2017, 07:14
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10244
Applikationen: Freetype


Name        : freetype
Product : Fedora 25
Version : 2.6.5
Release : 3.fc25
URL : http://www.freetype.org
Summary : A free and portable font rendering engine
Description :
The FreeType engine is a free and portable font rendering
engine, developed to provide advanced font support for a variety of
platforms and environments. FreeType is a library which can open and
manages font files as well as efficiently load, hint and render
individual glyphs. FreeType is not a font server or a complete
text-rendering library.

Update Information:

This update fixes a possible heap buffer overflow.

[ 1 ] Bug #1429968 - CVE-2016-10244 freetype: parse_charstrings function in
type1/t1load.c does not ensure that a font contains a glyph name [fedora-all]

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade freetype' at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Pro-Linux @Facebook
Neue Nachrichten