[Bug 800592] CVE-2012-1134 freetype: Out-of heap-based buffer write in Type1 font parser by retrieving font's private dictionary (FU#35608)

bugzilla at redhat.com bugzilla at redhat.com
Tue Mar 6 20:52:54 UTC 2012

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.


Kurt Seifried <kseifried at redhat.com> changed:

           What    |Removed                     |Added
            Summary|freetype: Out-of heap-based |CVE-2012-1134 freetype:
                   |buffer write in Type1 font  |Out-of heap-based buffer
                   |parser by retrieving font's |write in Type1 font parser
                   |private dictionary          |by retrieving font's
                   |(FU#35608)                  |private dictionary
                   |                            |(FU#35608)
              Alias|                            |CVE-2012-1134

--- Comment #1 from Kurt Seifried <kseifried at redhat.com> 2012-03-06 15:52:52 EST ---
Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16

Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the fonts-bugs mailing list