Univention Bugzilla – Bug 39558
freetype: Multiple issues (ES 3.2)
Last modified: 2017-09-28 17:17:54 CEST
Debian package version 2.4.2-2.1+squeeze6 fixes: * remote denial of service (infinite loop) via a "broken number-with-base" in a Postscript stream (CVE-2014-9745) * use of uninitialized data (CVE-2014-9746) * t42parse.c vulnerability (CVE-2014-9747) Note: backported patches present : 2.4.2-2.1+squeeze4-errata3.2-5 see Bug 37756 Comment 1. +++ This bug was initially created as a clone of Bug #38465 +++
Imported and built in extsec3.2: 2.4.2-2.1.67.201703071427 Advisory checked in into my extsec3.2 git repo.
I've backported an additional patch from Bug 40548: * out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c. (CVE-2016-10328) Package imported and built, advisory draft updated (git).
Tests (amd64): OK
Advisory: OK
The advisory is here: https://git.knut.univention.de/arequate/extsec3.2
<http://errata.software-univention.de/ucs/3.2/457.html>