Bug 1198823 - (CVE-2022-27406) VUL-0: CVE-2022-27406: freetype,freetype2: Segmentation violation
(CVE-2022-27406)
VUL-0: CVE-2022-27406: freetype,freetype2: Segmentation violation
Status: NEW
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Fridrich Strba
Security Team bot
https://smash.suse.de/issue/329927/
CVSSv3.1:SUSE:CVE-2022-27406:5.5:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-04-25 12:21 UTC by Hu
Modified: 2022-08-11 14:03 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Hu 2022-04-25 12:23:38 UTC
Affected:    
- SUSE:SLE-11:Update/freetype2          2.3.7    
- SUSE:SLE-12-SP2:Update/freetype2      2.6.3    
- SUSE:SLE-15:Update/freetype2          2.10.1

Not affected:                                                                                                                  
- SUSE:SLE-11:Update/freetype                   1.3.1    
- SUSE:SLE-12:Update/freetype                   1.3.1    
- openSUSE:Backports:SLE-15-SP3/freetype        1.3.1    
- openSUSE:Backports:SLE-15-SP4/freetype        1.3.1    
- openSUSE:Factory/freetype                     1.3.1
Comment 2 Hu 2022-04-25 12:27:30 UTC
Already fixed:
- openSUSE:Factory/freetype2                     2.12.0