SUSE Security Update: Security update for freetype2
______________________________________________________________________________

Announcement ID:    SUSE-SU-2012:0521-1
Rating:             important
References:         #750937 #750938 #750939 #750940 #750941 #750945 
                    #750946 #750947 #750948 #750949 #750950 #750951 
                    #750952 #750953 #750955 
Cross-References:   CVE-2012-1126 CVE-2012-1127 CVE-2012-1129
                    CVE-2012-1130 CVE-2012-1131 CVE-2012-1132
                    CVE-2012-1133 CVE-2012-1134 CVE-2012-1135
                    CVE-2012-1136 CVE-2012-1138 CVE-2012-1139
                    CVE-2012-1141 CVE-2012-1142 CVE-2012-1143
                   
Affected Products:
                    SUSE CORE 9
______________________________________________________________________________

   An update that fixes 15 vulnerabilities is now available.

Description:


   Specially crafted font files could have caused buffer
   overflows in  freetype. This has been fixed.

   Security Issue references:

   * CVE-2012-1142
   
   * CVE-2012-1126
   
   * CVE-2012-1130
   
   * CVE-2012-1129
   
   * CVE-2012-1127
   
   * CVE-2012-1138
   
   * CVE-2012-1136
   
   * CVE-2012-1131
   
   * CVE-2012-1143
   
   * CVE-2012-1141
   
   * CVE-2012-1132
   
   * CVE-2012-1133
   
   * CVE-2012-1135
   
   * CVE-2012-1139
   
   * CVE-2012-1134
   



Package List:

   - SUSE CORE 9 (i586 s390 s390x x86_64):

      freetype2-2.1.7-53.27
      freetype2-devel-2.1.7-53.27
      ft2demos-2.1.7-88.18

   - SUSE CORE 9 (x86_64):

      freetype2-32bit-9-201203291610
      freetype2-devel-32bit-9-201203291610

   - SUSE CORE 9 (s390x):

      freetype2-32bit-9-201203291618
      freetype2-devel-32bit-9-201203291618


References:

   https://www.suse.com/security/cve/CVE-2012-1126.html
   https://www.suse.com/security/cve/CVE-2012-1127.html
   https://www.suse.com/security/cve/CVE-2012-1129.html
   https://www.suse.com/security/cve/CVE-2012-1130.html
   https://www.suse.com/security/cve/CVE-2012-1131.html
   https://www.suse.com/security/cve/CVE-2012-1132.html
   https://www.suse.com/security/cve/CVE-2012-1133.html
   https://www.suse.com/security/cve/CVE-2012-1134.html
   https://www.suse.com/security/cve/CVE-2012-1135.html
   https://www.suse.com/security/cve/CVE-2012-1136.html
   https://www.suse.com/security/cve/CVE-2012-1138.html
   https://www.suse.com/security/cve/CVE-2012-1139.html
   https://www.suse.com/security/cve/CVE-2012-1141.html
   https://www.suse.com/security/cve/CVE-2012-1142.html
   https://www.suse.com/security/cve/CVE-2012-1143.html
   https://bugzilla.novell.com/750937
   https://bugzilla.novell.com/750938
   https://bugzilla.novell.com/750939
   https://bugzilla.novell.com/750940
   https://bugzilla.novell.com/750941
   https://bugzilla.novell.com/750945
   https://bugzilla.novell.com/750946
   https://bugzilla.novell.com/750947
   https://bugzilla.novell.com/750948
   https://bugzilla.novell.com/750949
   https://bugzilla.novell.com/750950
   https://bugzilla.novell.com/750951
   https://bugzilla.novell.com/750952
   https://bugzilla.novell.com/750953
   https://bugzilla.novell.com/750955
   https://login.microfocus.com/nidp/app/login

SuSE: 2012:0521-1: important: freetype2

April 18, 2012
An update that fixes 15 vulnerabilities is now available

Summary

Specially crafted font files could have caused buffer overflows in freetype. This has been fixed. Security Issue references: * CVE-2012-1142 * CVE-2012-1126 * CVE-2012-1130 * CVE-2012-1129 * CVE-2012-1127 * CVE-2012-1138 * CVE-2012-1136 * CVE-2012-1131 * CVE-2012-1143 * CVE-2012-1141 * CVE-2012-1132 * CVE-2012-1133 * CVE-2012-1135 * CVE-2012-1139 * CVE-2012-1134 Package List: - SUSE CORE 9 (i586 s390 s390x x86_64): freetype2-2.1.7-53.27 freetype2-devel-2.1.7-53.27 ft2demos-2.1.7-88.18 - SUSE CORE 9 (x86_64): freetype2-32bit-9-201203291610 freetype2-devel-32bit-9-201203291610 - SUSE CORE 9 (s390x): freetype2-32bit-9-201203291618 freetype2-devel-32bit-9-201203291618

References

#750937 #750938 #750939 #750940 #750941 #750945

#750946 #750947 #750948 #750949 #750950 #750951

#750952 #750953 #750955

Cross- CVE-2012-1126 CVE-2012-1127 CVE-2012-1129

CVE-2012-1130 CVE-2012-1131 CVE-2012-1132

CVE-2012-1133 CVE-2012-1134 CVE-2012-1135

CVE-2012-1136 CVE-2012-1138 CVE-2012-1139

CVE-2012-1141 CVE-2012-1142 CVE-2012-1143

Affected Products:

SUSE CORE 9

https://www.suse.com/security/cve/CVE-2012-1126.html

https://www.suse.com/security/cve/CVE-2012-1127.html

https://www.suse.com/security/cve/CVE-2012-1129.html

https://www.suse.com/security/cve/CVE-2012-1130.html

https://www.suse.com/security/cve/CVE-2012-1131.html

https://www.suse.com/security/cve/CVE-2012-1132.html

https://www.suse.com/security/cve/CVE-2012-1133.html

https://www.suse.com/security/cve/CVE-2012-1134.html

https://www.suse.com/security/cve/CVE-2012-1135.html

https://www.suse.com/security/cve/CVE-2012-1136.html

https://www.suse.com/security/cve/CVE-2012-1138.html

https://www.suse.com/security/cve/CVE-2012-1139.html

https://www.suse.com/security/cve/CVE-2012-1141.html

https://www.suse.com/security/cve/CVE-2012-1142.html

https://www.suse.com/security/cve/CVE-2012-1143.html

https://bugzilla.novell.com/750937

https://bugzilla.novell.com/750938

https://bugzilla.novell.com/750939

https://bugzilla.novell.com/750940

https://bugzilla.novell.com/750941

https://bugzilla.novell.com/750945

https://bugzilla.novell.com/750946

https://bugzilla.novell.com/750947

https://bugzilla.novell.com/750948

https://bugzilla.novell.com/750949

https://bugzilla.novell.com/750950

https://bugzilla.novell.com/750951

https://bugzilla.novell.com/750952

https://bugzilla.novell.com/750953

https://bugzilla.novell.com/750955

https://login.microfocus.com/nidp/app/login

Severity
Announcement ID: SUSE-SU-2012:0521-1
Rating: important

Related News

Google Releases Chrome 130 with Critical Security Fixes for 17 Flaws
3 - 5 min read
Google recently unveiled Chrome 130 , an update that addresses several security vulnerabilities to ensure the web browser's safety and reliability.
U.S. Investigation into China-Backed Telecom Companies Hack: The Role & Risks of Encryption Backdoors
3 - 5 min read
U.S. authorities are on high alert as they investigate an alleged Chinese state-sponsored hack targeting major U.S. telecommunications companies.
FASTCash Linux Malware: A New Cybercrime Menace Targeting Payment Switch Systems
3 - 5 min read
As malware threats evolve to increasingly target Linux systems, admins and organizations must stay up-to-date on the latest Linux malware variants
Optimizing CWPP on Linux Servers: Best Practices and Configurations
3 - 6 min read
Cloud Workload Protection Platforms are now essential for securing virtual environments. These provide a robust security layer vital for addressing
The Infiltration of Supply Chain Attacks in Open-Source Software Management
3 - 6 min read
Open-source projects are renowned for their collaborative nature and widespread adoption, yet more sophisticated supply chain attacks target them
Strengthen Your Linux Software Development Pipeline with Code Security Scanners
3 - 6 min read
Developers recognize the critical nature of protecting software systems as cyberattacks grow more sophisticated, thus necessitating robust security
Everything You Need to Know About Cloud Security Posture Management
3 - 5 min read
Many companies are transitioning from physical servers to cloud operations, but this transformation brings new challenges. Cloud Security Posture
Understanding the Critical Oath-Toolkit Vulnerability and Its Implications for Admins
3 - 5 min read
As Linux security threats advance and evolve, vulnerabilities often surface unexpectedly, exposing systems to potential exploitation. SUSE

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved