CVE-2016-10244

Priority
Medium
Description
The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7
does not ensure that a font contains a glyph name, which allows remote
attackers to cause a denial of service (heap-based buffer over-read) or
possibly have unspecified other impact via a crafted file.
References
Bugs
Assigned-to
mdeslaur
Package
Upstream:released (2.7)
Ubuntu 17.10 (Artful Aardvark):released (2.6.3-3ubuntu2)
Ubuntu 12.04 ESM (Precise Pangolin):released (2.4.8-1ubuntu2.4)
Ubuntu 14.04 LTS (Trusty Tahr):released (2.5.2-1ubuntu2.6)
Ubuntu Core 15.04:released (2.5.2-2ubuntu3.2)
Ubuntu 16.04 LTS (Xenial Xerus):released (2.6.1-0.1ubuntu2.1)
Ubuntu 17.04 (Zesty Zapus):released (2.6.3-3ubuntu2)
Patches:
Upstream:http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=a660e3de422731b94d4a134d27555430cbb6fb39
More Information

Updated: 2017-09-28 22:14:37 UTC (commit 13419)