March 2012 - fonts-bugs - Fedora Mailing-Lists

[Bug 800591] CVE-2012-1133 freetype: Out-of heap-based buffer write by parsing BDF glyph information and bitmaps (FU#35607)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800591 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: Out-of heap-based |CVE-2012-1133 freetype: |buffer write by parsing BDF |Out-of heap-based buffer |glyph information and |write by parsing BDF glyph |bitmaps (FU#35607) |information and bitmaps | |(FU#35607) Alias| |CVE-2012-1133 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:52:23 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800590] CVE-2012-1132 freetype: Out-of heap-based buffer read flaw in Type1 font loader by parsing font dictionary entries (FU#35606)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800590 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: Out-of heap-based |CVE-2012-1132 freetype: |buffer read flaw in Type1 |Out-of heap-based buffer |font loader by parsing font |read flaw in Type1 font |dictionary entries |loader by parsing font |(FU#35606) |dictionary entries | |(FU#35606) Alias| |CVE-2012-1132 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:51:48 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800589] CVE-2012-1131 freetype (64-bit specific): Out-of heap-based buffer read by attempt to record current cell into the cell table (FU#35604)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800589 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype (64-bit specific): |CVE-2012-1131 freetype |Out-of heap-based buffer |(64-bit specific): Out-of |read by attempt to record |heap-based buffer read by |current cell into the cell |attempt to record current |table (FU#35604) |cell into the cell table | |(FU#35604) Alias| |CVE-2012-1131 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:50:33 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800587] CVE-2012-1130 freetype: Out-of heap-based buffer read by loading properties of PCF fonts (FU#35603)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800587 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: Out-of heap-based |CVE-2012-1130 freetype: |buffer read by loading |Out-of heap-based buffer |properties of PCF fonts |read by loading properties |(FU#35603) |of PCF fonts (FU#35603) Alias| |CVE-2012-1130 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:49:53 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800585] CVE-2012-1129 freetype: Out-of heap-based buffer read when parsing certain SFNT strings by Type42 font parser (FU#35602)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800585 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: Out-of heap-based |CVE-2012-1129 freetype: |buffer read when parsing |Out-of heap-based buffer |certain SFNT strings by |read when parsing certain |Type42 font parser |SFNT strings by Type42 font |(FU#35602) |parser (FU#35602) Alias| |CVE-2012-1129 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:48:49 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800584] CVE-2012-1128 freetype: NULL pointer dereference by moving zone2 pointer point for certain TrueType font (FU#35601)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800584 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: NULL pointer |CVE-2012-1128 freetype: |dereference by moving zone2 |NULL pointer dereference by |pointer point for certain |moving zone2 pointer point |TrueType font (FU#35601) |for certain TrueType font | |(FU#35601) Alias| |CVE-2012-1128 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:48:22 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800583] CVE-2012-1127 freetype: Out-of heap-based buffer read by parsing glyph information and bitmaps for BDF fonts (FU#35599, FU#35600)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800583 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: Out-of heap-based |CVE-2012-1127 freetype: |buffer read by parsing |Out-of heap-based buffer |glyph information and |read by parsing glyph |bitmaps for BDF fonts |information and bitmaps for |(FU#35599, FU#35600) |BDF fonts (FU#35599, | |FU#35600) Alias| |CVE-2012-1127 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:47:40 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800581] CVE-2012-1126 freetype: Out-of heap-based buffer read by parsing, adding properties in BDF fonts, or validating if property being an atom (FU#35597, FU#35598)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800581 Kurt Seifried <kseifried(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|freetype: Out-of heap-based |CVE-2012-1126 freetype: |buffer read by parsing, |Out-of heap-based buffer |adding properties in BDF |read by parsing, adding |fonts, or validating if |properties in BDF fonts, or |property being an atom |validating if property |(FU#35597, FU#35598) |being an atom (FU#35597, | |FU#35598) Alias| |CVE-2012-1126 --- Comment #1 from Kurt Seifried <kseifried(a)redhat.com> 2012-03-06 15:47:03 EST --- Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800607] freetype: Out-of heap-based buffer write in the TrueType bytecode interpreter by moving zone2 pointer point (FU#35689)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800607 Jan Lieskovsky <jlieskov(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |800639 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

[Bug 800602] freetype: Out-of heap-based buffer read flaw by conversion of an ASCII string into a signed short integer by processing BDF fonts (FU#35658)

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=800602 Jan Lieskovsky <jlieskov(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |800639 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

12 years, 3 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

fonts-bugs March 2012