PublicDateAtUSN: 2011-10-14
Candidate: CVE-2011-3256
PublicDate: 2011-10-14 10:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3256
 https://ubuntu.com/security/notices/USN-1267-1
Description:
 FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5,
 Mandriva Enterprise Server 5, and possibly other products, allows remote
 attackers to execute arbitrary code or cause a denial of service (memory
 corruption) via a crafted font, a different vulnerability than
 CVE-2011-0226.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3256
Priority: medium
Discovered-by:
Assigned-to: tyhicks
CVSS: 

Patches_freetype:
 vendor: http://www.debian.org/security/2011/dsa-2328
 upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=9c98fbf634a83c6ea286395f0e788956eafd5aeb
upstream_freetype: released (2.4.7-1)
hardy_freetype: released (2.3.5-1ubuntu4.8.04.7)
lucid_freetype: released (2.3.11-1ubuntu2.5)
maverick_freetype: released (2.4.2-2ubuntu0.3)
natty_freetype: released (2.4.4-1ubuntu2.2)
oneiric_freetype: released (2.4.4-2ubuntu1.1)
devel_freetype: not-affected (2.4.7-1)