PublicDateAtUSN: 2010-09-28
Candidate: CVE-2010-3311
PublicDate: 2011-01-07 23:00:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3311
 https://ubuntu.com/security/notices/USN-1013-1
Description:
 Integer overflow in base/ftstream.c in libXft (aka the X FreeType library)
 in FreeType before 2.4 allows remote attackers to cause a denial of service
 (application crash) or possibly execute arbitrary code via a crafted
 Compact Font Format (CFF) font file that triggers a heap-based buffer
 overflow, related to an "input stream position error" issue, a different
 vulnerability than CVE-2010-1797.
Ubuntu-Description: 
Notes: 
 mdeslaur> although provided patch is for freetype, the heap overflow is in
 mdeslaur> libxft/xft.
 mdeslaur> freetype 2.4.x not affected
Bugs: 
Priority: medium
Discovered-by: Marc Schoenefeld
Assigned-to: 
CVSS: 

Patches_freetype:
upstream_freetype: released (2.4.0)
dapper_freetype: released (2.1.10-1ubuntu2.10)
hardy_freetype: released (2.3.5-1ubuntu4.8.04.6)
jaunty_freetype: ignored (reached end-of-life)
karmic_freetype: released (2.3.9-5ubuntu0.4)
lucid_freetype: released (2.3.11-1ubuntu2.4)
maverick_freetype: not-affected (2.4.2-2)
devel_freetype: not-affected (2.4.2-2)