[Bug 2186430] New: CVE-2023-2004 freetype: integer overflowin in tt_hvadvance_adjust() in src/truetype/ttgxvar.c [fedora-all]

13 Apr 2023


      https://bugzilla.redhat.com/show_bug.cgi?id=2186430
Bug ID: 2186430
           Summary: CVE-2023-2004 freetype: integer overflowin in
                    tt_hvadvance_adjust() in src/truetype/ttgxvar.c
                    [fedora-all]
           Product: Fedora
           Version: 37
            Status: NEW
         Component: freetype
          Keywords: Security, SecurityTracking
          Severity: medium
          Priority: medium
          Assignee: mkasik@redhat.com
          Reporter: trathi@redhat.com
        QA Contact: extras-qa@fedoraproject.org
                CC: ajax@redhat.com, fonts-bugs@lists.fedoraproject.org,
                    gnome-sig@lists.fedoraproject.org, mclasen@redhat.com,
                    mkasik@redhat.com, rstrode@redhat.com,
                    sandmann@redhat.com
  Target Milestone: ---
    Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2186428
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2186430

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

[Bug 2186430] New: CVE-2023-2004 freetype: integer overflowin in tt_hvadvance_adjust() in src/truetype/ttgxvar.c [fedora-all]