CVE-2007-1351
Published: 6 April 2007
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.
Priority
Status
Package | Release | Status |
---|---|---|
freetype Launchpad, Ubuntu, Debian |
dapper |
Released
(2.1.10-1ubuntu2.4)
|
edgy |
Released
(2.2.1-5ubuntu0.2)
|
|
feisty |
Released
(2.2.1-5ubuntu1.1)
|
|
upstream |
Released
(2.3.3)
|
|
libxfont Launchpad, Ubuntu, Debian |
dapper |
Released
(1.0.0-0ubuntu3.3)
|
edgy |
Released
(1.2.0-0ubuntu3.1)
|
|
feisty |
Released
(1.2.7-1ubuntu1)
|
|
upstream |
Needs triage
|