|
|
Subscribe / Log in / New account

freetype: arbitrary code execution

Package(s):freetype CVE #(s):CVE-2010-2541
Created:July 30, 2010 Updated:January 20, 2011
Description: From the Red Hat advisory:

Several buffer overflow flaws were found in the FreeType demo applications. If a user loaded a carefully-crafted font file with a demo application, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application.

Alerts:
SUSE SUSE-SU-2012:0553-1 freetype2 2012-04-23
Gentoo 201201-09 freetype 2012-01-23
MeeGo MeeGo-SA-10:31 freetype 2010-10-09
Debian DSA-2105-1 freetype 2010-09-07
SUSE SUSE-SR:2010:016 yast2-webclient-patch_updates, perl, openldap2, opera, freetype2/libfreetype6, java-1_6_0-openjdk 2010-08-26
openSUSE openSUSE-SU-2010:0549-1 freetype2 2010-08-25
Fedora FEDORA-2010-15705 freetype 2010-10-05
Ubuntu USN-972-1 freetype 2010-08-17
CentOS CESA-2010:0577 freetype 2010-08-16
CentOS CESA-2010:0578 freetype 2010-08-03
Pardus 2010-100 freetype 2010-08-02
Red Hat RHSA-2010:0578-01 freetype 2010-07-30
Red Hat RHSA-2010:0577-01 freetype 2010-07-30
to post comments

freetype: arbitrary code execution

Posted Aug 16, 2010 17:28 UTC (Mon) by san20 (guest, #69582) [Link]

Is this the same flaw jailbreakme.com uses to jailbreak the iOS version 4.0.1 or less?


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds