Bug 1198830 - (CVE-2022-27404) VUL-0: CVE-2022-27404: freetype2,freetype: FreeType: Buffer Overflow
(CVE-2022-27404)
VUL-0: CVE-2022-27404: freetype2,freetype: FreeType: Buffer Overflow
Status: NEW
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Fridrich Strba
Security Team bot
https://smash.suse.de/issue/329929/
CVSSv3.1:SUSE:CVE-2022-27404:6.6:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-04-25 14:53 UTC by Hu
Modified: 2022-08-11 14:00 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Hu 2022-04-25 14:53:33 UTC
Affected:
- SUSE:SLE-12-SP2:Update/freetype2              2.6.3
- SUSE:SLE-15:Update/freetype2                  2.10.1

Not Affected:
- SUSE:SLE-11:Update/freetype                   1.3.1
- SUSE:SLE-12:Update/freetype                   1.3.1
- openSUSE:Backports:SLE-15-SP3/freetype        1.3.1
- openSUSE:Backports:SLE-15-SP4/freetype        1.3.1
- openSUSE:Factory/freetype                     1.3.1
- SUSE:SLE-11:Update/freetype2                  2.3.7

Already fixed:
- openSUSE:Factory/freetype2                    2.12.0