Bugzilla – Bug 945849
VUL-0: CVE-2014-9745: freetype2: Infinite loop in parse_encoding in t1load.c
Last modified: 2017-08-10 14:00:08 UTC
rh#1262377 The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (infinite loop) via a "broken number-with-base" in a Postscript stream, as demonstrated by 8#garbage. References: https://bugzilla.redhat.com/show_bug.cgi?id=1262377 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9745 https://bugs.launchpad.net/ubuntu/+source/freetype/+bug/1492124 http://savannah.nongnu.org/bugs/index.php?41590 https://code.google.com/p/chromium/issues/detail?id=459050 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=df14e6c0b9592cbb24d5381dfc6106b14f915e75 http://www.ubuntu.com/usn/USN-2739-1
bugbot adjusting priority
This is an autogenerated message for OBS integration: This bug (945849) was mentioned in https://build.opensuse.org/request/show/333066 13.1 / freetype2
An update workflow for this issue was started. This issue was rated as low. Please submit fixed packages until 2015-11-04. When done, reassign the bug to security-team@suse.de. https://swamp.suse.de/webswamp/wf/62306
openSUSE-SU-2015:1704-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 945849,947966 CVE References: CVE-2014-9745,CVE-2014-9747 Sources used: openSUSE 13.1 (src): freetype2-2.5.0.1-2.10.1, ft2demos-2.5.0-2.10.1
SUSE-SU-2016:1149-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 945849,947966 CVE References: CVE-2014-9745,CVE-2014-9747 Sources used: SUSE Linux Enterprise Software Development Kit 11-SP4 (src): freetype2-2.3.7-25.41.4 SUSE Linux Enterprise Server 11-SP4 (src): freetype2-2.3.7-25.41.4, ft2demos-2.3.7-25.41.4 SUSE Linux Enterprise Debuginfo 11-SP4 (src): freetype2-2.3.7-25.41.4, ft2demos-2.3.7-25.41.4
fixed