[Bug 621980] CVE-2010-2806 FreeType: Heap-based buffer overflow by processing FontType42 fonts with negative length of SFNT strings (FT bug #30656)

Wednesday, 22 September 2010

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.

https://bugzilla.redhat.com/show_bug.cgi?id=621980

Jan Lieskovsky <jlieskov(a)redhat.com&gt; changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Priority|medium                      |high
  Status Whiteboard|public=20100805,reported=20 |public=20100805,reported=20
                   |100806,source=internet,impa |100806,source=internet,impa
                   |ct=moderate,cvss2=6.8/AV:N/ |ct=important,cvss2=6.8/AV:N
                   |AC:M/Au:N/C:P/I:P/A:P,rhel- |/AC:M/Au:N/C:P/I:P/A:P,rhel
                   |3/freetype=affected,rhel-4/ |-3/freetype=affected,rhel-4
                   |freetype=affected,rhel-5/fr |/freetype=affected,rhel-5/f
                   |eetype=affected,rhel-6.0/fr |reetype=affected,rhel-6.0/f
                   |eetype=affected,fedora-all/ |reetype=affected,fedora-all
                   |freetype=affected           |/freetype=affected
           Severity|medium                      |high

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

[Bug 621980] CVE-2010-2806 FreeType: Heap-based buffer overflow by processing FontType42 fonts with negative length of SFNT strings (FT bug #30656)