advisories/20465.adv

type: security
subject: Updated freetype2 packages fix security vulnerability
CVE:
 - CVE-2016-10244
src:
  5:
   core:
     - freetype2-2.5.4-2.1.mga5
   tainted:
     - freetype2-2.5.4-2.1.mga5.tainted
description: |
  The parse_charstrings function in type1/t1load.c in FreeType 2 did not
  ensure that a font contains a glyph name, which could allow remote
  attackers to cause a denial of service (heap-based buffer over-read) or
  possibly have unspecified other impact via a crafted file
  (CVE-2016-10244).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=20465
 - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36
 - http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1load.c?h=VER-2-7&id=a660e3de422731b94d4a134d27555430cbb6fb39
ID: MGASA-2017-0085
1	type: security
2	subject: Updated freetype2 packages fix security vulnerability
3	CVE:
4	- CVE-2016-10244
5	src:
6	5:
7	core:
8	- freetype2-2.5.4-2.1.mga5
9	tainted:
10	- freetype2-2.5.4-2.1.mga5.tainted
11	description: \|
12	The parse_charstrings function in type1/t1load.c in FreeType 2 did not
13	ensure that a font contains a glyph name, which could allow remote
14	attackers to cause a denial of service (heap-based buffer over-read) or
15	possibly have unspecified other impact via a crafted file
16	(CVE-2016-10244).
17	references:
18	- https://bugs.mageia.org/show_bug.cgi?id=20465
19	- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36
20	- http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1load.c?h=VER-2-7&id=a660e3de422731b94d4a134d27555430cbb6fb39
21	ID: MGASA-2017-0085