REDHAT-BUG-800598
First published: Tue Mar 06 2012(Updated: )
An array index error, leading to out-of stack-based buffer read flaw was found in the way FreeType font rendering engine processed certain glyph information for glyph bitmap distribution format (BDF) font files. A remote attacker could provide a specially-crafted BDF font file, which once opened in an application linked against FreeType would lead to that application crash. Upstream bug report: [1] <a href="https://savannah.nongnu.org/bugs/?35656">https://savannah.nongnu.org/bugs/?35656</a> Upstream patch: [2] <a href="http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=6ac022dc750d95296a6f731b9594f2e751d997fa">http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=6ac022dc750d95296a6f731b9594f2e751d997fa</a> Acknowledgements: Red Hat would like to thank Mateusz Jurczyk of the Google Security Team for reporting this issue.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeType |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://savannah.nongnu.org/bugs/?35656
- http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=6ac022dc750d95296a6f731b9594f2e751d997fa
- http://www.openwall.com/lists/oss-security/2012/03/06/16
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=800598#c0
- http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=37b5c92f83e5da53707b20c10ef8e0d7a24924d9
- https://rhn.redhat.com/errata/RHSA-2012-0467.html
- https://bugzilla.redhat.com/show_bug.cgi?id=800598
- collector/redhat-bugzilla
- alias/CVE-2012-1139
- agent/first-publish-date
- agent/last-modified-date
- agent/type
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/freetype
- canonical/freetype