Description
The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted file.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 alpine v3.2 | | =2.3.12-r0 || =2.3.8-r0 || =2.3.8-r1 || =2.4.0-r0 || =2.4.1-r0 || =2.4.10-r0 || =2.4.11-r0 || =2.4.12-r0 || =2.4.2-r0 || =2.4.3-r0 || =2.4.4-r0 || =2.4.4-r1 || =2.4.4-r2 || =2.4.4-r3 || =2.4.5-r0 || =2.4.5-r1 || =2.4.6-r0 || =2.4.7-r0 || =2.4.8-r0 || =2.4.9-r0 || =2.5.0.1-r0 || =2.5.0.1-r1 || =2.5.1-r0 || =2.5.1-r1 || =2.5.1-r2 || =2.5.2-r0 || =2.5.2-r1 || =2.5.3-r0 || =2.5.4-r0 || =2.5.5-r0 || >=0 <2.5.5-r1 | 2.5.5-r1 |
alpine v3.3 | | =2.3.12-r0 || =2.3.8-r0 || =2.3.8-r1 || =2.4.0-r0 || =2.4.1-r0 || =2.4.10-r0 || =2.4.11-r0 || =2.4.12-r0 || =2.4.2-r0 || =2.4.3-r0 || =2.4.4-r0 || =2.4.4-r1 || =2.4.4-r2 || =2.4.4-r3 || =2.4.5-r0 || =2.4.5-r1 || =2.4.6-r0 || =2.4.7-r0 || =2.4.8-r0 || =2.4.9-r0 || =2.5.0.1-r0 || =2.5.0.1-r1 || =2.5.1-r0 || =2.5.1-r1 || =2.5.1-r2 || =2.5.2-r0 || =2.5.2-r1 || =2.5.3-r0 || =2.5.4-r0 || =2.5.5-r0 || =2.6-r0 || =2.6-r1 || =2.6-r2 || =2.6-r3 || =2.6-r4 || =2.6.2-r0 || >=0 <2.6.3-r0 | 2.6.3-r0 |
alpine v3.4 | | =2.3.12-r0 || =2.3.8-r0 || =2.3.8-r1 || =2.4.0-r0 || =2.4.1-r0 || =2.4.10-r0 || =2.4.11-r0 || =2.4.12-r0 || =2.4.2-r0 || =2.4.3-r0 || =2.4.4-r0 || =2.4.4-r1 || =2.4.4-r2 || =2.4.4-r3 || =2.4.5-r0 || =2.4.5-r1 || =2.4.6-r0 || =2.4.7-r0 || =2.4.8-r0 || =2.4.9-r0 || =2.5.0.1-r0 || =2.5.0.1-r1 || =2.5.1-r0 || =2.5.1-r1 || =2.5.1-r2 || =2.5.2-r0 || =2.5.2-r1 || =2.5.3-r0 || =2.5.4-r0 || =2.5.5-r0 || =2.6-r0 || =2.6-r1 || =2.6-r2 || =2.6-r3 || =2.6-r4 || =2.6.2-r0 || =2.6.3-r0 || >=0 <2.6.3-r1 | 2.6.3-r1 |
 debian 12 | | | 2.6.3-3.1 |
debian 14 | | | 2.6.3-3.1 |
debian 13 | | | 2.6.3-3.1 |
debian 11 | | | 2.6.3-3.1 |
 rpm rhel5 | | - | - |
rpm rhel6 | | - | - |
rpm rhel7 | | - | - |
