Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Security Research
  Threat Watch Blog
  Zero-Day Monitor
  Search Engine
  Mailing List & RSS
 
   

>> Fedora Security Update Fixes FreeType "TT_Load_Simple_Glyph()" Integer Overflow

Title : Fedora Security Update Fixes FreeType "TT_Load_Simple_Glyph()" Integer Overflow
VUPEN ID : VUPEN/ADV-2007-2087
CVE ID : CVE-2007-2754
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-06-07

Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format 

A vulnerability has been identified in Fedora, which could be exploited by attackers to execute arbitrary code. This issue is caused by an error in FreeType. For additional information, see : VUPEN/ADV-2007-1894

Affected Products

Fedora 7

Solution

Upgrade the affected package :

1576a18681b5580e53614559a58b8bb87528e2e4 freetype-devel-2.3.4-3.fc7.ppc64.rpm
1bddaae976740d59c4b54325d1de2a9d18d2b7d5 freetype-demos-2.3.4-3.fc7.ppc64.rpm
e6372f6e32d854997e3c86084ea864115dbe5a57 freetype-2.3.4-3.fc7.ppc64.rpm
1ac840dea16a77b9d733b35039e7b5bf9b008467 freetype-debuginfo-2.3.4-3.fc7.ppc64.rpm
4199b4fe9bb1feaa3fc6e825cee8bf27ee257f8f freetype-2.3.4-3.fc7.i386.rpm
c2c16ccee25353f3e76bd32a502cb6b19f8f8fca freetype-devel-2.3.4-3.fc7.i386.rpm
c9ed324b1d6c44810c1e9bb80461edb15c9f604a freetype-debuginfo-2.3.4-3.fc7.i386.rpm
ad2a4c879c9cd6e63c65d7e1581363426095a22d freetype-demos-2.3.4-3.fc7.i386.rpm
32f1d5dc67e217d95e844dfa1ec45ddb4bbb429d freetype-2.3.4-3.fc7.x86_64.rpm
17796fed2280cbbc9e1d5224406480e69def1f70 freetype-demos-2.3.4-3.fc7.x86_64.rpm
87bb984b21ad73be7d202a7d052c8f141d3695fe freetype-devel-2.3.4-3.fc7.x86_64.rpm
d883a4ab97f600834a90e865584a29caf384b646 freetype-debuginfo-2.3.4-3.fc7.x86_64.rpm
e630c5a928c329cc6aa49e5d2f2ad009c503b09b freetype-demos-2.3.4-3.fc7.ppc.rpm
9593fc7c5e017ef1b6a8a09645ee5f7cfcff1c9d freetype-debuginfo-2.3.4-3.fc7.ppc.rpm
a3c6b6f01ed096f9b6568f24342289c3736d1f4c freetype-2.3.4-3.fc7.ppc.rpm
e6ebfe44dcb86d301675c4a748030ba8a76e924c freetype-devel-2.3.4-3.fc7.ppc.rpm
d08a9d43bbabddcb28a0e97a878fdefe2ab7ccf8 freetype-2.3.4-3.fc7.src.rpm

References

http://www.vupen.com/english/advisories/2007/2087
https://www.redhat.com/archives/fedora-package-announce/2007-June/msg00036.html

ChangeLog

2007-06-07 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Vulnerability Alerting

Free 14-Day Trial
 
  Latest News

 

  >> 2009-07-06

     

  Microsoft Windows 0-Day
  Flaw Exploited in the Wild


  >> 2009-06-10

     

  VUPEN Security Research
  Discovered Critical Flaws
  in Adobe Acrobat and MS
  Office Word


  >> 2009-06-02

     

  VUPEN Security Research
  Discovered Critical Flaws
  in ACDSee Products


  >> 2009-05-22

     

  VUPEN Discovered Two
  Critical Vulnerabilities in
  Novell GroupWise 8 / 7

 

 

More Informations    
    








Copyright 2003-2009 © VUPEN.COM - Privacy Policy