Bugs fixes in "freetype"
Origin | Bug number | Title | Date fixed |
---|---|---|---|
Launchpad | 1492124 | infinite loop in parse_encoding (t1load.c) | 2015-09-10 |
Launchpad | 1449225 | Backport #41309 ( 8b281f83e ) to fix use of uninitialized data. | 2015-09-10 |
Launchpad | 1492124 | infinite loop in parse_encoding (t1load.c) | 2015-09-10 |
Launchpad | 1449225 | Backport #41309 ( 8b281f83e ) to fix use of uninitialized data. | 2015-09-10 |
Launchpad | 1492124 | infinite loop in parse_encoding (t1load.c) | 2015-09-10 |
Launchpad | 1449225 | Backport #41309 ( 8b281f83e ) to fix use of uninitialized data. | 2015-09-10 |
Launchpad | 1492124 | infinite loop in parse_encoding (t1load.c) | 2015-09-10 |
Launchpad | 1449225 | Backport #41309 ( 8b281f83e ) to fix use of uninitialized data. | 2015-09-10 |
Launchpad | 1492124 | infinite loop in parse_encoding (t1load.c) | 2015-09-10 |
Launchpad | 1449225 | Backport #41309 ( 8b281f83e ) to fix use of uninitialized data. | 2015-09-10 |
Launchpad | 1492124 | infinite loop in parse_encoding (t1load.c) | 2015-09-10 |
Launchpad | 1449225 | Backport #41309 ( 8b281f83e ) to fix use of uninitialized data. | 2015-09-10 |
CVE | CVE-2014-9675 | bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers | 2015-03-30 |
CVE | CVE-2014-9674 | The Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.5.4 proceeds with adding to length values without validating the original v | 2015-03-30 |
CVE | CVE-2014-9673 | Integer signedness error in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.5.4 allows remote attackers to cause a denial o | 2015-03-30 |
CVE | CVE-2014-9672 | Array index error in the parse_fond function in base/ftmac.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (out-of-bo | 2015-03-30 |
CVE | CVE-2014-9671 | Off-by-one error in the pcf_get_properties function in pcf/pcfread.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (N | 2015-03-30 |
CVE | CVE-2014-9670 | Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a deni | 2015-03-30 |
CVE | CVE-2014-9669 | Multiple integer overflows in sfnt/ttcmap.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (out-of-bounds read or memor | 2015-03-30 |
CVE | CVE-2014-9668 | The woff_open_font function in sfnt/sfobjs.c in FreeType before 2.5.4 proceeds with offset+length calculations without restricting length values, whi | 2015-03-30 |
About
-
Send Feedback to @ubuntu_updates