Ubuntu Update For Freetype USN-1686-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Mateusz Jurczyk discovered that FreeType did not correctly handle certain malformed BDF font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash or possibly execute arbitrary code with user privileges.

Affected

freetype on Ubuntu 12.10 , Ubuntu 12.04 LTS , Ubuntu 11.10 , Ubuntu 10.04 LTS , Ubuntu 8.04 LTS

Severity

Classification

CVE CVE-2012-5668, CVE-2012-5669, CVE-2012-5670

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for audiofile vulnerability USN-912-1
Ubuntu Update for dbus vulnerabilities USN-653-1
Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1
Ubuntu Update for cups-filters USN-2143-1
Ubuntu Update for cups USN-1207-1

Ubuntu Update for freetype USN-1686-1

Take action and discover your vulnerabilities