CVE-2012-1133
Published: 7 March 2012
FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap write operation and memory corruption) or possibly execute arbitrary code via crafted glyph or bitmap data in a BDF font.
Notes
| Author | Note |
|---|---|
| tyhicks | Reproducer does not trigger in hardy-oneiric, but code is present See Red Hat Bugzilla comment #8 for a great analysis Patching hardy-oneiric in case the regression fix, which would expose this vulnerability, is ever backported |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
freetype Launchpad, Ubuntu, Debian |
hardy |
Released
(2.3.5-1ubuntu4.8.04.9)
|
| lucid |
Released
(2.3.11-1ubuntu2.6)
|
|
| maverick |
Released
(2.4.2-2ubuntu0.4)
|
|
| natty |
Released
(2.4.4-1ubuntu2.3)
|
|
| oneiric |
Released
(2.4.4-2ubuntu1.2)
|
|
| upstream |
Released
(2.4.9)
|
|
|
Patches: upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=28dd2c45957278e962f95633157b6139de8170aa |
||