Novell Home

CVE-2012-5669

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-5669 at MITRE

Description

The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.

NVD CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P)

Novell/SUSE information

Novell Bugzilla entry: 795826

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Software Development Kit 11 SP2
  • freetype2-devel >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232
SUSE Linux Enterprise Software Development Kit 11 SP2
  • freetype2-devel >= 2.3.7-25.32.1
  • freetype2-devel-32bit >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232
SUSE Linux Enterprise Desktop 11 SP2
  • freetype2 >= 2.3.7-25.32.1
  • freetype2-devel >= 2.3.7-25.32.1
  • ft2demos >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232
SUSE Linux Enterprise Desktop 11 SP2
  • freetype2 >= 2.3.7-25.32.1
  • freetype2-32bit >= 2.3.7-25.32.1
  • freetype2-devel >= 2.3.7-25.32.1
  • ft2demos >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • freetype2 >= 2.3.7-25.32.1
  • ft2demos >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • freetype2 >= 2.3.7-25.32.1
  • freetype2-32bit >= 2.3.7-25.32.1
  • ft2demos >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232
SUSE Linux Enterprise Server 11 SP2
  • freetype2 >= 2.3.7-25.32.1
  • freetype2-x86 >= 2.3.7-25.32.1
  • ft2demos >= 2.3.7-25.32.1
Builds
SAT Patch Nr: 7232

© 2014 Novell