CVE-2006-1861
CVE-2006-1861
Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a crafted LWFN file in base/ftmac.c. NOTE: item 4 was originally identified by CVE-2006-2493.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
ftp://patches.sgi.com/support/free/security/advisories/20060701-01-Uhttp://lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.htmlhttp://lists.suse.com/archive/suse-security-announce/2006-Jun/0012.htmlhttps://bugzilla.redhat.com/bugzilla/attachment.cgi?id=128606https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593#c8https://bugzilla.redhat.com/show_bug.cgi?id=502565http://secunia.com/advisories/20100http://secunia.com/advisories/20525http://secunia.com/advisories/20591http://secunia.com/advisories/20638