Your submission was sent successfully! Close

CVE-2012-1138

Published: 7 March 2012

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via vectors involving the MIRP instruction in a TrueType font.

Priority

Medium

Status

Package Release Status
freetype
Launchpad, Ubuntu, Debian
hardy
Released (2.3.5-1ubuntu4.8.04.9)
lucid
Released (2.3.11-1ubuntu2.6)
maverick
Released (2.4.2-2ubuntu0.4)
natty
Released (2.4.4-1ubuntu2.3)
oneiric
Released (2.4.4-2ubuntu1.2)
upstream
Released (2.4.9)