Your submission was sent successfully! Close

CVE-2012-1131

Published: 7 March 2012

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, on 64-bit platforms allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via vectors related to the cell table of a font.

Priority

Low

Status

Package Release Status
freetype
Launchpad, Ubuntu, Debian
hardy
Released (2.3.5-1ubuntu4.8.04.9)
lucid
Released (2.3.11-1ubuntu2.6)
maverick
Released (2.4.2-2ubuntu0.4)
natty
Released (2.4.4-1ubuntu2.3)
oneiric
Released (2.4.4-2ubuntu1.2)
upstream
Released (2.4.9)
Patches:
upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=fcbc82e69e7b114b0db75e955896107d611898e6