Mateusz Jurczyk discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash or possibly execute arbitrary code with user privileges.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "2.5.2-1ubuntu2.4", "binary_name": "freetype2-demos" }, { "binary_version": "2.5.2-1ubuntu2.4", "binary_name": "libfreetype6" }, { "binary_version": "2.5.2-1ubuntu2.4", "binary_name": "libfreetype6-dev" }, { "binary_version": "2.5.2-1ubuntu2.4", "binary_name": "libfreetype6-udeb" } ] }