« Sun Alert 268288 A... | Main | Sun Alert 269208 A... »
26 Oct 2009 Sun Alert 270268 Multiple Integer Overflow Vulnerabilities in the FreeType 2 Font Engine May Lead to a Denial of Service (DoS) or Allow Execution of Arbitrary Code
posted by chandan in Alerts
Product: Solaris 8, Solaris 9, Solaris 10, OpenSolaris

Multiple integer overflow vulnerabilities in the FreeType 2 Font Library
(libfreetype) may affect applications that make use of this library. Depending
on the application, this vulnerability may allow a local or remote unprivileged
user to crash the application through a specially crafted font file, resulting in
a Denial of service(DOS) or to execute arbitrary code with the privileges of
the user running that application.

These issues are also described in the following document CVE-2009-0946 at :

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0946



State: Preliminary
First released: 26-Oct-2009
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-270268-1
Permalink |
Comments:

Post a Comment:

Comments are closed for this entry.

« Sun Alert 268288 A... | Main | Sun Alert 269208 A... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« November 2009
SunMonTueWedThuFriSat
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
     
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.