Required CVE Record Information
Description
FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via a crafted ASCII string in a BDF font.
References 23 Total
- secunia.com: 48797 third-party-advisory
- secunia.com: 48508 third-party-advisory
- secunia.com: 48822 third-party-advisory
- mandriva.com: MDVSA-2012:057 vendor-advisory
- lists.apple.com: APPLE-SA-2012-09-19-1 vendor-advisory
- secunia.com: 48758 third-party-advisory
- http://support.apple.com/kb/HT5503
- securityfocus.com: 52318 vdb-entry
- ubuntu.com: USN-1403-1 vendor-advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=733512
- secunia.com: 48918 third-party-advisory
- openwall.com: [oss-security] 20120306 Re: CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.9 mailing-list
- lists.opensuse.org: SUSE-SU-2012:0484 vendor-advisory
- lists.opensuse.org: SUSE-SU-2012:0521 vendor-advisory
- secunia.com: 48973 third-party-advisory
- http://www.mozilla.org/security/announce/2012/mfsa2012-21.html
- https://bugzilla.redhat.com/show_bug.cgi?id=800602
- rhn.redhat.com: RHSA-2012:0467 vendor-advisory
- lists.opensuse.org: SUSE-SU-2012:0483 vendor-advisory
- securitytracker.com: 1026765 vdb-entry
- lists.opensuse.org: openSUSE-SU-2012:0489 vendor-advisory
- secunia.com: 48951 third-party-advisory
- security.gentoo.org: GLSA-201204-04 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 23 Total
- secunia.com: 48797 third-party-advisoryx_transferred
- secunia.com: 48508 third-party-advisoryx_transferred
- secunia.com: 48822 third-party-advisoryx_transferred
- mandriva.com: MDVSA-2012:057 vendor-advisoryx_transferred
- lists.apple.com: APPLE-SA-2012-09-19-1 vendor-advisoryx_transferred
- secunia.com: 48758 third-party-advisoryx_transferred
- http://support.apple.com/kb/HT5503 x_transferred
- securityfocus.com: 52318 vdb-entryx_transferred
- ubuntu.com: USN-1403-1 vendor-advisoryx_transferred
- https://bugzilla.mozilla.org/show_bug.cgi?id=733512 x_transferred
- secunia.com: 48918 third-party-advisoryx_transferred
- openwall.com: [oss-security] 20120306 Re: CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.9 mailing-listx_transferred
- lists.opensuse.org: SUSE-SU-2012:0484 vendor-advisoryx_transferred
- lists.opensuse.org: SUSE-SU-2012:0521 vendor-advisoryx_transferred
- secunia.com: 48973 third-party-advisoryx_transferred
- http://www.mozilla.org/security/announce/2012/mfsa2012-21.html x_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=800602 x_transferred
- rhn.redhat.com: RHSA-2012:0467 vendor-advisoryx_transferred
- lists.opensuse.org: SUSE-SU-2012:0483 vendor-advisoryx_transferred
- securitytracker.com: 1026765 vdb-entryx_transferred
- lists.opensuse.org: openSUSE-SU-2012:0489 vendor-advisoryx_transferred
- secunia.com: 48951 third-party-advisoryx_transferred
- security.gentoo.org: GLSA-201204-04 vendor-advisoryx_transferred