ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2014.0130
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2014-0130)
Resumen:	The remote host is missing an update for the 'freetype2' package(s) announced via the MGASA-2014-0130 advisory.
Descripción:	Summary: The remote host is missing an update for the 'freetype2' package(s) announced via the MGASA-2014-0130 advisory. Vulnerability Insight: It was reported that Freetype before 2.5.3 suffers from an out-of-bounds stack-based read/write flaw in cf2_hintmap_build() in the CFF rasterizing code, which could lead to a buffer overflow (CVE-2014-2240). It was also reported that Freetype before 2.5.3 has a denial-of-service vulnerability in the CFF rasterizing code, due to a reachable assertion (CVE-2014-2241). Affected Software/OS: 'freetype2' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2240 BugTraq ID: 66074 http://www.securityfocus.com/bid/66074 http://www.securitytracker.com/id/1029895 http://secunia.com/advisories/57291 http://secunia.com/advisories/57447 http://www.ubuntu.com/usn/USN-2148-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-2241 http://www.openwall.com/lists/oss-security/2014/03/12/4
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.