You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa freetype

Sigurnosni nedostatak programskog paketa freetype

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-3572-1
February 14, 2018

freetype vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 17.10

Summary:

FreeType could be made to crash if it opened a specially crafted file.

Software Description:
– freetype: FreeType 2 is a font engine library

Details:

It was discovered that FreeType incorrectly handled certain files.
An attacker could possibly use this to cause a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.10:
  libfreetype6                    2.8-0.2ubuntu2.1

After a standard system update you need to restart your session to make
all the necessary changes.

References:
  https://www.ubuntu.com/usn/usn-3572-1
  CVE-2018-6942

Package Information:
  https://launchpad.net/ubuntu/+source/freetype/2.8-0.2ubuntu2.1
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=M6Hp
—–END PGP SIGNATURE—–

AutorVlatka Misic
Cert idNCERT-REF-2018-02-0121-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostaci programske biblioteke libvorbis

Otkriveni su sigurnosni nedostaci u programskoj biblioteci libvorbis za operacijski sustav Debian. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanja...

Close