VDB
GCVE-110-MAGEIA-2014-526
GCVE-110-MAGEIA-2014-526
Advisory Published
Updated freetype2 packages fix security vulnerability:
It was reported that Freetype before 2.5.4 suffers from an out-of-bounds
stack-based read/write flaw in cf2_hintmap_build() in the CFF rasterizing
code, which could lead to a buffer overflow. This is due to an incomplete
fix for CVE-2014-2240.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | freetype2 | 2.5.0.1-3.2.mga4.tainted (unaffected), 0 (affected), 2.5.0.1-3.2.mga4 (unaffected), 0 (affected) | — |
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.