[Bug 487070] New: CVE-2006-3467 CVE-2006-3467 freetype: integer overflow vulnerability due to incomplete fix for CVE-2006-1861
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
Summary: CVE-2006-3467 CVE-2006-3467 freetype: integer overflow vulnerability due to incomplete fix for CVE-2006-1861 Alias: CVE-2006-3467
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Summary: CVE-2006-3467 CVE-2006-3467 freetype: integer overflow vulnerability due to incomplete fix for CVE-2006-1861 Product: Security Response Version: unspecified Platform: All URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-20 06-3467 OS/Version: Linux Status: NEW Status Whiteboard: impact=moderate,source=rehdat,reported=20060710,public =20060718 Keywords: Security Severity: medium Priority: medium Component: vulnerability AssignedTo: security-response-team@redhat.com ReportedBy: vdanen@redhat.com CC: ajax@redhat.com, fedora-fonts-bugs-list@redhat.com Classification: Other Target Release: ---
Common Vulnerabilities and Exposures assigned an identifier CVE-2006-3467 to the following vulnerability:
Name: CVE-2006-3467 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3467 Assigned: 20060710 Reference: URL: http://www.securityfocus.com/archive/1/archive/1/451426/100/200/threaded Reference: MISC: http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593
Integer overflow in FreeType before 2.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a partial fix of CVE-2006-1861.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Summary|CVE-2006-3467 CVE-2006-3467 |CVE-2006-3467 freetype: |freetype: integer overflow |integer overflow |vulnerability due to |vulnerability due to |incomplete fix for |incomplete fix for |CVE-2006-1861 |CVE-2006-1861
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|impact=moderate,source=rehd |impact=moderate,source=redh |at,reported=20060710,public |at,reported=20060710,public |=20060718 |=20060718
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends on|484444 |
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends on|484443 |
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends on|484442 |
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends on|484441 |
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Vincent Danen vdanen@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution| |ERRATA Last Closed| |2010-12-22 11:28:19
--- Comment #2 from Vincent Danen vdanen@redhat.com 2010-12-22 11:28:19 EST --- This was addressed via:
Red Hat Enterprise Linux version 2.1 (RHSA-2006:0500 (freetype) and RHSA-2006:0635 (XFree86)) Red Hat Enterprise Linux version 3 (RHSA-2006:0500 (freetype) and RHSA-2006:0635 (XFree86)) Red Hat Enterprise Linux version 4 (RHSA-2006:0500 (freetype) and RHSA-2006:0634 (xorg-x11))
https://bugzilla.redhat.com/show_bug.cgi?id=487070
Ján Rusnačko jrusnack@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=moderate,source=redh |impact=moderate,source=redh |at,reported=20060710,public |at,reported=20060710,public |=20060718 |=20060718,cwe=CWE-190[auto]
fonts-bugs@lists.fedoraproject.org
-
Red Hat Bugzilla