CVE-2014-2241

Published: 12 March 2014

The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType before 2.5.3 do not properly check if a subroutine exists, which allows remote attackers to cause a denial of service (assertion failure), as demonstrated by a crafted ttf file.

Priority

Status

Package	Release	Status
freetype Launchpad, Ubuntu, Debian	lucid	Not vulnerable (code not present)
	precise	Not vulnerable (code not present)
	quantal	Not vulnerable (code not present)
	saucy	Released (2.4.12-0ubuntu1.1)
	upstream	Released (2.5.3)
	Patches: upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=135c3faebb96f8f550bd4f318716f2e1e095a969

References

http://sourceforge.net/projects/freetype/files/freetype2/2.5.3/
http://www.securitytracker.com/id/1029895
http://secunia.com/advisories/57291
https://ubuntu.com/security/notices/USN-2148-1
https://www.cve.org/CVERecord?id=CVE-2014-2241
NVD
Launchpad
Debian

Bugs

http://savannah.nongnu.org/bugs/?41697
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741299

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›