Mandriva Update For Freetype2 MDVSA-2012:057 (freetype2) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Multiple flaws were found in FreeType. Specially crafted files could cause application crashes or potentially execute arbitrary code (CVE-2012-1126, CVE-2012-1127, CVE-2012-1128, CVE-2012-1129, CVE-2012-1130, CVE-2012-1131, CVE-2012-1132, CVE-2012-1133, CVE-2012-1134, CVE-2012-1135, CVE-2012-1136, CVE-2012-1137, CVE-2012-1138, CVE-2012-1139, CVE-2012-1140, CVE-2012-1141, CVE-2012-1142, CVE-2012-1143, CVE-2012-1144). The updated packages have been patched to correct this issue.

Affected

freetype2 on Mandriva Linux 2011.0, Mandriva Enterprise Server 5.2, Mandriva Linux 2010.1

Severity

Classification

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:144 (ghostscript)
Mandrake Security Advisory MDVSA-2009:049 (pycrypto)
Mandrake Security Advisory MDVSA-2009:131 (apr-util)
Mandrake Security Advisory MDVSA-2009:083 (mozilla-thunderbird)
Mandrake Security Advisory MDVSA-2009:008 (qemu)

Mandriva Update for freetype2 MDVSA-2012:057 (freetype2)

Take action and discover your vulnerabilities