CVE-2010-3855
Publication date 22 October 2010
Last updated 24 July 2024
Ubuntu priority
Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.
Status
Package | Ubuntu Release | Status |
---|---|---|
freetype | 10.10 maverick |
Fixed 2.4.2-2ubuntu0.1
|
10.04 LTS lucid |
Fixed 2.3.11-1ubuntu2.4
|
|
9.10 karmic |
Fixed 2.3.9-5ubuntu0.4
|
|
9.04 jaunty | Ignored end of life | |
8.04 LTS hardy |
Fixed 2.3.5-1ubuntu4.8.04.6
|
|
6.06 LTS dapper |
Fixed 2.1.10-1ubuntu2.10
|
References
Related Ubuntu Security Notices (USN)
- USN-1013-1
- FreeType vulnerabilities
- 4 November 2010