Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2014.0130
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2014-0130)
Zusammenfassung:	The remote host is missing an update for the 'freetype2' package(s) announced via the MGASA-2014-0130 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'freetype2' package(s) announced via the MGASA-2014-0130 advisory. Vulnerability Insight: It was reported that Freetype before 2.5.3 suffers from an out-of-bounds stack-based read/write flaw in cf2_hintmap_build() in the CFF rasterizing code, which could lead to a buffer overflow (CVE-2014-2240). It was also reported that Freetype before 2.5.3 has a denial-of-service vulnerability in the CFF rasterizing code, due to a reachable assertion (CVE-2014-2241). Affected Software/OS: 'freetype2' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2240 BugTraq ID: 66074 http://www.securityfocus.com/bid/66074 http://www.securitytracker.com/id/1029895 http://secunia.com/advisories/57291 http://secunia.com/advisories/57447 http://www.ubuntu.com/usn/USN-2148-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-2241 http://www.openwall.com/lists/oss-security/2014/03/12/4
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.