[Bug 800593] CVE-2012-1135 freetype: Out-of heap-based buffer read in TrueType bytecode interpreter by executing NPUSHB and NPUSHW instructions (FU#35640)

bugzilla at redhat.com bugzilla at redhat.com
Tue Mar 6 20:53:23 UTC 2012

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.


Kurt Seifried <kseifried at redhat.com> changed:

           What    |Removed                     |Added
            Summary|freetype: Out-of heap-based |CVE-2012-1135 freetype:
                   |buffer read in TrueType     |Out-of heap-based buffer
                   |bytecode interpreter by     |read in TrueType bytecode
                   |executing NPUSHB and NPUSHW |interpreter by executing
                   |instructions (FU#35640)     |NPUSHB and NPUSHW
                   |                            |instructions (FU#35640)
              Alias|                            |CVE-2012-1135

--- Comment #1 from Kurt Seifried <kseifried at redhat.com> 2012-03-06 15:53:21 EST ---
Added CVE as per http://www.openwall.com/lists/oss-security/2012/03/06/16

Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the fonts-bugs mailing list