ELSA-2010-0578

ULN >
Oracle Linux Errata repository >
ELSA-2010-0578

ELSA-2010-0578 - freetype security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2010-07-30

Description

[2.2.1-25]
- Add freetype-2.2.1-axis-name-overflow.patch
(Avoid overflow when dealing with names of axes)
- Resolves: #614012

[2.2.1-24]
- Modify freetype-2.2.1-CVE-2010-2519.patch (additional fix)
(If the type of the POST fragment is 0, the segment is completely ignored)
- Resolves: #614012

[2.2.1-23]
- Add freetype-2.2.1-CVE-2010-2527.patch
(Use precision for '%s' where appropriate to avoid buffer overflows)
- Resolves: #614012

[2.2.1-22]
- Add freetype-2.2.1-CVE-2010-2498.patch
(Assure that 'end_point' is not larger than 'glyph->num_points')
- Add freetype-2.2.1-CVE-2010-2499.patch
(Check the buffer size during gathering PFB fragments)
- Add freetype-2.2.1-CVE-2010-2500.patch
(Use smaller threshold values for 'width' and 'height')
- Add freetype-2.2.1-CVE-2010-2519.patch
(Check 'rlen' the length of fragment declared in the POST fragment header)
- Resolves: #614012

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 4 (i386)	freetype-2.1.9-14.el4.8.src.rpm	87fcded37b5c299861951b69b6dba9f1054d4626f26c9dc1e1b31c5232afa31f	ELSA-2011-1455	el4_i386_latest
	freetype-2.1.9-14.el4.8.src.rpm	87fcded37b5c299861951b69b6dba9f1054d4626f26c9dc1e1b31c5232afa31f	ELSA-2011-1455	el4_u8_i386_patch
	freetype-2.1.9-14.el4.8.i386.rpm	a2b68bb2d251c601ca2f1219a458e00dd057bcdf31eebfa758f4070a1d77e6bf	ELSA-2011-1455	el4_i386_latest
	freetype-2.1.9-14.el4.8.i386.rpm	a2b68bb2d251c601ca2f1219a458e00dd057bcdf31eebfa758f4070a1d77e6bf	ELSA-2011-1455	el4_u8_i386_patch
	freetype-demos-2.1.9-14.el4.8.i386.rpm	07bb844ea7578ce3340809efdaaf2c0a20db09df32f0f70743a4b8e345211284	ELSA-2011-1455	el4_i386_latest
	freetype-demos-2.1.9-14.el4.8.i386.rpm	07bb844ea7578ce3340809efdaaf2c0a20db09df32f0f70743a4b8e345211284	ELSA-2011-1455	el4_u8_i386_patch
	freetype-devel-2.1.9-14.el4.8.i386.rpm	eb8e974b1de421152bfafe8ff470b7044f7dea600ad3c1219e5e7553e4e7f367	ELSA-2011-1455	el4_i386_latest
	freetype-devel-2.1.9-14.el4.8.i386.rpm	eb8e974b1de421152bfafe8ff470b7044f7dea600ad3c1219e5e7553e4e7f367	ELSA-2011-1455	el4_u8_i386_patch
	freetype-utils-2.1.9-14.el4.8.i386.rpm	39d76c8f945d24bd2ad2186b866c6cd5eba21ec72134c3e8f5a41f0a6329aa8e	ELSA-2011-1455	el4_i386_latest
	freetype-utils-2.1.9-14.el4.8.i386.rpm	39d76c8f945d24bd2ad2186b866c6cd5eba21ec72134c3e8f5a41f0a6329aa8e	ELSA-2011-1455	el4_u8_i386_patch

Oracle Linux 4 (ia64)	freetype-2.1.9-14.el4.8.src.rpm	87fcded37b5c299861951b69b6dba9f1054d4626f26c9dc1e1b31c5232afa31f	ELSA-2011-1455	el4_ia64_latest
	freetype-2.1.9-14.el4.8.src.rpm	87fcded37b5c299861951b69b6dba9f1054d4626f26c9dc1e1b31c5232afa31f	ELSA-2011-1455	el4_u8_ia64_patch
	freetype-2.1.9-14.el4.8.i386.rpm	a2b68bb2d251c601ca2f1219a458e00dd057bcdf31eebfa758f4070a1d77e6bf	ELSA-2011-1455	el4_ia64_latest
	freetype-2.1.9-14.el4.8.i386.rpm	a2b68bb2d251c601ca2f1219a458e00dd057bcdf31eebfa758f4070a1d77e6bf	ELSA-2011-1455	el4_u8_ia64_patch
	freetype-2.1.9-14.el4.8.ia64.rpm	3ef6fe59e33a7e855905886ef9d2d9f3fc336499fa376ccbd9acd8bec33f1ff8	ELSA-2011-1455	el4_ia64_latest
	freetype-2.1.9-14.el4.8.ia64.rpm	3ef6fe59e33a7e855905886ef9d2d9f3fc336499fa376ccbd9acd8bec33f1ff8	ELSA-2011-1455	el4_u8_ia64_patch
	freetype-demos-2.1.9-14.el4.8.ia64.rpm	b725d4b5c541fe74acba770dfa86eb2e11d429902fb87587bdf7719e76f04785	ELSA-2011-1455	el4_ia64_latest
	freetype-demos-2.1.9-14.el4.8.ia64.rpm	b725d4b5c541fe74acba770dfa86eb2e11d429902fb87587bdf7719e76f04785	ELSA-2011-1455	el4_u8_ia64_patch
	freetype-devel-2.1.9-14.el4.8.ia64.rpm	b264c55820dd37abd1acfc7aa738c804f6ec253488eed6d202fe8783f78db78c	ELSA-2011-1455	el4_ia64_latest
	freetype-devel-2.1.9-14.el4.8.ia64.rpm	b264c55820dd37abd1acfc7aa738c804f6ec253488eed6d202fe8783f78db78c	ELSA-2011-1455	el4_u8_ia64_patch
	freetype-utils-2.1.9-14.el4.8.ia64.rpm	7e24b96e1b2aea04e86472806c8c2d925ae7e6dcc4e114e2b55815ca40ef5c63	ELSA-2011-1455	el4_ia64_latest
	freetype-utils-2.1.9-14.el4.8.ia64.rpm	7e24b96e1b2aea04e86472806c8c2d925ae7e6dcc4e114e2b55815ca40ef5c63	ELSA-2011-1455	el4_u8_ia64_patch

Oracle Linux 4 (x86_64)	freetype-2.1.9-14.el4.8.src.rpm	87fcded37b5c299861951b69b6dba9f1054d4626f26c9dc1e1b31c5232afa31f	ELSA-2011-1455	el4_u8_x86_64_patch
	freetype-2.1.9-14.el4.8.src.rpm	87fcded37b5c299861951b69b6dba9f1054d4626f26c9dc1e1b31c5232afa31f	ELSA-2011-1455	el4_x86_64_latest
	freetype-2.1.9-14.el4.8.i386.rpm	a2b68bb2d251c601ca2f1219a458e00dd057bcdf31eebfa758f4070a1d77e6bf	ELSA-2011-1455	el4_u8_x86_64_patch
	freetype-2.1.9-14.el4.8.i386.rpm	a2b68bb2d251c601ca2f1219a458e00dd057bcdf31eebfa758f4070a1d77e6bf	ELSA-2011-1455	el4_x86_64_latest
	freetype-2.1.9-14.el4.8.x86_64.rpm	e634b845db401cc6a1b0f8369085b4f8bbdb28722dea91cb92a80513177c0357	ELSA-2011-1455	el4_u8_x86_64_patch
	freetype-2.1.9-14.el4.8.x86_64.rpm	e634b845db401cc6a1b0f8369085b4f8bbdb28722dea91cb92a80513177c0357	ELSA-2011-1455	el4_x86_64_latest
	freetype-demos-2.1.9-14.el4.8.x86_64.rpm	46aedda2ccf0c411cc51a65707876048c98b87b319578a1ee65498c4c12a495c	ELSA-2011-1455	el4_u8_x86_64_patch
	freetype-demos-2.1.9-14.el4.8.x86_64.rpm	46aedda2ccf0c411cc51a65707876048c98b87b319578a1ee65498c4c12a495c	ELSA-2011-1455	el4_x86_64_latest
	freetype-devel-2.1.9-14.el4.8.x86_64.rpm	24b060f203cd056b5a4cad0144a84cdf7718e38880170475bfd737259aa5270c	ELSA-2011-1455	el4_u8_x86_64_patch
	freetype-devel-2.1.9-14.el4.8.x86_64.rpm	24b060f203cd056b5a4cad0144a84cdf7718e38880170475bfd737259aa5270c	ELSA-2011-1455	el4_x86_64_latest
	freetype-utils-2.1.9-14.el4.8.x86_64.rpm	c8b0acb7827a3bf60dfd9546d134c59dd0b1ddc878e5897d48a3c970baa8fd4f	ELSA-2011-1455	el4_u8_x86_64_patch
	freetype-utils-2.1.9-14.el4.8.x86_64.rpm	c8b0acb7827a3bf60dfd9546d134c59dd0b1ddc878e5897d48a3c970baa8fd4f	ELSA-2011-1455	el4_x86_64_latest

Oracle Linux 5 (i386)	freetype-2.2.1-25.el5_5.src.rpm	6540fae8b4e9ff1a2313b13b5368e74e55eadf0b3f3a2351d1f1c4dcd792c82e	ELSA-2013-0216	el5_u5_i386_patch
	freetype-2.2.1-25.el5_5.i386.rpm	d484a4c284a12401c76aa935fadb087204ec7237e93f68feec0670f10aa8f18f	ELSA-2013-0216	el5_u5_i386_patch
	freetype-demos-2.2.1-25.el5_5.i386.rpm	ca5f4c0eef05aae026859c055bac2b468017ed6bc8223ddb09df1d867c9f6111	ELSA-2013-0216	el5_u5_i386_patch
	freetype-devel-2.2.1-25.el5_5.i386.rpm	718d8b6566ef16ceb2b5d1a60a8c0e4172ef0299b3499770995154cf7043da5f	ELSA-2013-0216	el5_u5_i386_patch

Oracle Linux 5 (ia64)	freetype-2.2.1-25.el5_5.src.rpm	6540fae8b4e9ff1a2313b13b5368e74e55eadf0b3f3a2351d1f1c4dcd792c82e	ELSA-2013-0216	el5_u5_ia64_patch
	freetype-2.2.1-25.el5_5.src.rpm	6540fae8b4e9ff1a2313b13b5368e74e55eadf0b3f3a2351d1f1c4dcd792c82e	ELSA-2013-0216	ol5_ia64_latest
	freetype-2.2.1-25.el5_5.i386.rpm	d484a4c284a12401c76aa935fadb087204ec7237e93f68feec0670f10aa8f18f	ELSA-2013-0216	el5_u5_ia64_patch
	freetype-2.2.1-25.el5_5.i386.rpm	d484a4c284a12401c76aa935fadb087204ec7237e93f68feec0670f10aa8f18f	ELSA-2013-0216	ol5_ia64_latest
	freetype-2.2.1-25.el5_5.ia64.rpm	1d73d4ccf74b8b427749a76dc74ac52ccb561ae02756507c635fa8404ae181e0	ELSA-2013-0216	el5_u5_ia64_patch
	freetype-2.2.1-25.el5_5.ia64.rpm	1d73d4ccf74b8b427749a76dc74ac52ccb561ae02756507c635fa8404ae181e0	ELSA-2013-0216	ol5_ia64_latest
	freetype-demos-2.2.1-25.el5_5.ia64.rpm	b3745b4a8cc793f87f27d1453d6467dceca0b7e8a1652f29f01a07f9b4fa9981	ELSA-2013-0216	el5_u5_ia64_patch
	freetype-demos-2.2.1-25.el5_5.ia64.rpm	b3745b4a8cc793f87f27d1453d6467dceca0b7e8a1652f29f01a07f9b4fa9981	ELSA-2013-0216	ol5_ia64_latest
	freetype-devel-2.2.1-25.el5_5.ia64.rpm	bac646d64f8661d20cecad031e64cdced02249cb4b82896460b1a656af70c8d7	ELSA-2013-0216	el5_u5_ia64_patch
	freetype-devel-2.2.1-25.el5_5.ia64.rpm	bac646d64f8661d20cecad031e64cdced02249cb4b82896460b1a656af70c8d7	ELSA-2013-0216	ol5_ia64_latest

Oracle Linux 5 (x86_64)	freetype-2.2.1-25.el5_5.src.rpm	6540fae8b4e9ff1a2313b13b5368e74e55eadf0b3f3a2351d1f1c4dcd792c82e	ELSA-2013-0216	el5_u5_x86_64_patch
	freetype-2.2.1-25.el5_5.i386.rpm	d484a4c284a12401c76aa935fadb087204ec7237e93f68feec0670f10aa8f18f	ELSA-2013-0216	el5_u5_x86_64_patch
	freetype-2.2.1-25.el5_5.x86_64.rpm	d98af42dc6aa1e0f70374e5d515a716090975e3021b056581582f0daaf39a2b3	ELSA-2013-0216	el5_u5_x86_64_patch
	freetype-demos-2.2.1-25.el5_5.x86_64.rpm	6375358744205a0bc32a5aa93040b767122086b1dd4c47386770bf21614575a7	ELSA-2013-0216	el5_u5_x86_64_patch
	freetype-devel-2.2.1-25.el5_5.i386.rpm	718d8b6566ef16ceb2b5d1a60a8c0e4172ef0299b3499770995154cf7043da5f	ELSA-2013-0216	el5_u5_x86_64_patch
	freetype-devel-2.2.1-25.el5_5.x86_64.rpm	3d4382f1dc8c8eb845974750bff725f2c77b8c0a50e86a1921abc978d8b381a8	ELSA-2013-0216	el5_u5_x86_64_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691