[Bug 1079600] New: VUL-1: freetype2: Integer overflow issues in src/truetype/ttinterp.c
http://bugzilla.suse.com/show_bug.cgi?id=1079600 Bug ID: 1079600 Summary: VUL-1: freetype2: Integer overflow issues in src/truetype/ttinterp.c Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: kbabioch@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- freetype2 contains integer overflow issues in src/truetype/ttinterp.c (Ins_MSIRP, Ins_MIAP, Ins_MIRP), which were already fixed upstream. References: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6027 https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/truetype... -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Karol Babioch
http://bugzilla.suse.com/show_bug.cgi?id=1079600
http://bugzilla.suse.com/show_bug.cgi?id=1079600#c1
--- Comment #1 from Karol Babioch
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
http://bugzilla.suse.com/show_bug.cgi?id=1079600#c4
--- Comment #4 from Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
http://bugzilla.suse.com/show_bug.cgi?id=1079600#c5
--- Comment #5 from Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1079600
http://bugzilla.suse.com/show_bug.cgi?id=1079600#c11
Tomáš Chvátal
http://bugzilla.suse.com/show_bug.cgi?id=1079600
http://bugzilla.suse.com/show_bug.cgi?id=1079600#c12
--- Comment #12 from Marcus Meissner
participants (1)
-
bugzilla_noreply@novell.com