Test Kennung:	1.3.6.1.4.1.25623.1.0.702428
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 2428-1 (freetype - several vulnerabilities)
Zusammenfassung:	Mateusz Jurczyk from the Google Security Team discovered several; vulnerabilities in Freetype's parsing of BDF, Type1 and TrueType fonts, which could result in the; execution of arbitrary code if a malformed font file is processed.
Beschreibung:	Summary: Mateusz Jurczyk from the Google Security Team discovered several vulnerabilities in Freetype's parsing of BDF, Type1 and TrueType fonts, which could result in the execution of arbitrary code if a malformed font file is processed. Affected Software/OS: freetype on Debian Linux Solution: For the stable distribution (squeeze), this problem has been fixed in version 2.4.2-2.1+squeeze4. The updated packages are already available since yesterday, but the advisory text couldn't be send earlier. For the unstable distribution (sid), this problem will be fixed soon. We recommend that you upgrade your freetype packages. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1136 http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html BugTraq ID: 52318 http://www.securityfocus.com/bid/52318 Debian Security Information: DSA-2428 (Google Search) http://www.debian.org/security/2012/dsa-2428 http://security.gentoo.org/glsa/glsa-201204-04.xml http://www.mandriva.com/security/advisories?name=MDVSA-2012:057 http://www.openwall.com/lists/oss-security/2012/03/06/16 RedHat Security Advisories: RHSA-2012:0467 http://rhn.redhat.com/errata/RHSA-2012-0467.html http://www.securitytracker.com/id?1026765 http://secunia.com/advisories/48300 http://secunia.com/advisories/48508 http://secunia.com/advisories/48758 http://secunia.com/advisories/48797 http://secunia.com/advisories/48822 http://secunia.com/advisories/48918 http://secunia.com/advisories/48951 http://secunia.com/advisories/48973 SuSE Security Announcement: SUSE-SU-2012:0483 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00002.html SuSE Security Announcement: SUSE-SU-2012:0484 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00003.html SuSE Security Announcement: SUSE-SU-2012:0521 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00015.html SuSE Security Announcement: openSUSE-SU-2012:0489 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00004.html http://www.ubuntu.com/usn/USN-1403-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-1142 Common Vulnerability Exposure (CVE) ID: CVE-2012-1133 Common Vulnerability Exposure (CVE) ID: CVE-2012-1144 Common Vulnerability Exposure (CVE) ID: CVE-2012-1134
Copyright	Copyright (C) 2013 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.