[Bug 800581] CVE-2012-1126 freetype: heap buffer over-read in BDF parsing _bdf_is_atom() (#35597, #35598)
bugzilla at redhat.com
bugzilla at redhat.com
Thu Mar 15 10:30:18 UTC 2012
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=800581
Tomas Hoger <thoger at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|CVE-2012-1126 freetype: |CVE-2012-1126 freetype:
|Out-of heap-based buffer |heap buffer over-read in
|read by parsing, adding |BDF parsing _bdf_is_atom()
|properties in BDF fonts, or |(#35597, #35598)
|validating if property |
|being an atom (FU#35597, |
|FU#35598) |
Status Whiteboard|impact=low,public=20120223, |impact=low,public=20120223,
|reported=20120302,source=go |reported=20120302,source=se
|ogle,cvss2=4.3/AV:N/AC:M/Au |calert,cvss2=4.3/AV:N/AC:M/
|:N/C:N/I:N/A:P,rhel-5/freet |Au:N/C:N/I:N/A:P,rhel-5/fre
|ype=affected,rhel-6/freetyp |etype=affected,rhel-6/freet
|e=affected,fedora-all/freet |ype=affected,fedora-all/fre
|ype=affected |etype=affected,fedora-all/m
| |ingw32-freetype=affected
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the fonts-bugs
mailing list