Test Kennung:	1.3.6.1.4.1.25623.1.0.890918
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for freetype (DLA-918-1)
Zusammenfassung:	It was found that an out of bounds write caused by a heap-based buffer;overflow could be triggered in freetype via a crafted font.;;This update also reverts the fix for CVE-2016-10328, as it was;determined that freetype 2.4.9 is not affected by that issue.
Beschreibung:	Summary: It was found that an out of bounds write caused by a heap-based buffer overflow could be triggered in freetype via a crafted font. This update also reverts the fix for CVE-2016-10328, as it was determined that freetype 2.4.9 is not affected by that issue. Affected Software/OS: freetype on Debian Linux Solution: For Debian 7 'Wheezy', these problems have been fixed in version 2.4.9-1.1+deb7u6. We recommend that you upgrade your freetype packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-8105 BugTraq ID: 99093 http://www.securityfocus.com/bid/99093 Debian Security Information: DSA-3839 (Google Search) http://www.debian.org/security/2017/dsa-3839 https://security.gentoo.org/glsa/201706-14 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=f958c48ee431bef8d4d466b40c9cb2d4dbcb7791 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=935 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
Copyright	Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.