Candidate: CVE-2014-9745
PublicDate: 2015-09-14 20:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9745
 https://ubuntu.com/security/notices/USN-2739-1
Description:
 The parse_encoding function in type1/t1load.c in FreeType before 2.5.3
 allows remote attackers to cause a denial of service (infinite loop) via a
 "broken number-with-base" in a Postscript stream, as demonstrated by
 8#garbage.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/freetype/+bug/1492124
 http://savannah.nongnu.org/bugs/index.php?41590
 https://code.google.com/p/chromium/issues/detail?id=459050
Priority: low
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Patches_freetype:
 upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=df14e6c0b9592cbb24d5381dfc6106b14f915e75
upstream_freetype: released (2.5.3)
precise_freetype: released (2.4.8-1ubuntu2.3)
trusty_freetype: released (2.5.2-1ubuntu2.5)
trusty/esm_freetype: released (2.5.2-1ubuntu2.5)
vivid_freetype: released (2.5.2-2ubuntu3.1)
devel_freetype: released (2.5.2-4ubuntu2)
vivid/stable-phone-overlay_freetype: released (2.5.2-2ubuntu3.1)
vivid/ubuntu-core_freetype: released (2.5.2-2ubuntu3.1)