ELSA-2010-0736

ELSA-2010-0736 - freetype security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2010-10-04

Description



[2.1.4-18.el3]
- Modify freetype-2.1.4-CVE-2010-3054.patch
- Resolves: #638139

[2.1.4-17.el3]
- Add freetype-2.1.4-CVE-2010-2806.patch
(Protect against negative string_size. Fix comparison.)
- Add freetype-2.1.4-CVE-2010-3311.patch
(Don't seek behind end of stream.)
- Add freetype-2.1.4-CVE-2010-3054.patch
(Protect against nested 'seac' calls.)
- Resolves: #638139


Related CVEs



Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 3 (i386) freetype-2.1.4-18.el3.src.rpmecba4aed5d14b1f5f95864d4a26ea0d6-
freetype-2.1.4-18.el3.i386.rpmeab4e17c60b1a8ee463f74b1f2f0fcb9-
freetype-devel-2.1.4-18.el3.i386.rpmb23b251982d17330905abce088f8b33a-
Oracle Linux 3 (x86_64) freetype-2.1.4-18.el3.src.rpmecba4aed5d14b1f5f95864d4a26ea0d6-
freetype-2.1.4-18.el3.i386.rpmeab4e17c60b1a8ee463f74b1f2f0fcb9-
freetype-2.1.4-18.el3.x86_64.rpmaaee29f622d5fa7f61dffede91958889-
freetype-devel-2.1.4-18.el3.x86_64.rpmc19c98f3aff2884e511c6da84376323a-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete