Univention Bugzilla – Bug 38465
freetype: Multiple issues (4.0)
Last modified: 2019-04-11 19:23:20 CEST
Multiple bugs in processing font files allow denial of service or the execution of arbitrary code: CVE-2014-9674: The Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.5.4 proceeds with adding to length values without validating the original values, which allows remote attackers to cause a denial of service (integer overflow and heap-based buffer overflow) or possibly have unspecified other impact via a crafted Mac font.
Debian package version 2.4.9-1.1+deb7u2 fixes: * remote denial of service (infinite loop) via a "broken number-with-base" in a Postscript stream (CVE-2014-9745) * use of uninitialized data (CVE-2014-9746) * t42parse.c vulnerability (CVE-2014-9747)
Debian package version 2.4.9-1.1+deb7u3 fixes CVE-2014-9674.
UCS 4.0 is out of maintenance. See Blocks field for the UCS 4.1 specific bug.