REDHAT-BUG-613160

First published: Fri Jul 09 2010(Updated: )

Robert Swiecki reported an invalid free flaw, that could possibly corrupt the heap, in freetype. This could cause applications linked against freetype to crash (SIGABRT) or, possibly, lead to the execution of arbitrary code if an attacker were able to get a victim to load a malicious font file. The affected code is not present in Red Hat Enterprise Linux 3 (freetype 2.1.4). In Red Hat Enterprise Linux 4 and 5 this code is present, but does not cause a crash. This issue has been given the name <a href="https://access.redhat.com/security/cve/CVE-2010-2498">CVE-2010-2498</a>. Upstream bug report: <a href="http://savannah.nongnu.org/bugs/index.php?30106">http://savannah.nongnu.org/bugs/index.php?30106</a> Upstream commit that fixes the issue: <a href="http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=8d22746c9e5af80ff4304aef440986403a5072e2">http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=8d22746c9e5af80ff4304aef440986403a5072e2</a> Acknowledgements: Red Hat would like to thank Robert Święcki of the Google Security Team for the discovery of this issue.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/first-publish-date
• agent/last-modified-date
• agent/type
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2010-2498
• agent/references
• agent/severity
• agent/description
• agent/event
• agent/trending
• agent/source
• agent/softwarecombine
• agent/tags
• agent/guess-ai
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• vendor/red hat
• canonical/freetype