freetype 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1184249468
업데이트 : 2007.07.12
상세내용
update 2.1.9-6
- CVE-2007-2754
Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier
might allow remote attackers to execute arbitrary code via a crafted TTF
image with a negative n_points value, which leads to an integer overflow
and heap-based buffer overflow.
Autoupdates 지원 : 지원
pkgsysupdate
update 패키지
RPMS :
. freetype-2.1.9-6.i686.rpm
. freetype-devel-2.1.9-6.i686.rpm
. freetype-utils-2.1.9-6.i686.rpm
SRPMS :
. freetype-2.1.9-6.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2754
|