Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 13 FEDORA-2010-15705 (freetype)
The remote host is missing an update to freetype
announced via advisory FEDORA-2010-15705.


[ 1 ] Bug #613160 - CVE-2010-2498 freetype: invalid free vulnerability with possible heap corruption
[ 2 ] Bug #613162 - CVE-2010-2499 freetype: buffer overflow vulnerability
[ 3 ] Bug #613167 - CVE-2010-2500 freetype: integer overflow vulnerability in smooth/ftgrays.c
[ 4 ] Bug #613194 - CVE-2010-2519 freetype: heap buffer overflow vulnerability when processing certain font files
[ 5 ] Bug #613198 - CVE-2010-2520 freetype: heap buffer overflow vulnerability in truetype bytecode support
[ 6 ] Bug #614557 - CVE-2010-2527 Freetype demos multiple buffer overflows
[ 7 ] Bug #617342 - CVE-2010-2541 Freetype ftmulti buffer overflow
[ 8 ] Bug #621144 - CVE-2010-1797 FreeType: Multiple stack overflows by processing CFF opcodes
[ 9 ] Bug #621907 - CVE-2010-2808 FreeType: Stack-based buffer overflow by processing certain LWFN fonts
[ 10 ] Bug #621980 - CVE-2010-2806 FreeType: Heap-based buffer overflow by processing FontType42 fonts with negative length of SFNT strings (FT bug #30656)
[ 11 ] Bug #623625 - CVE-2010-3311 freetype: Input stream position error by processing Compact Font Format (CFF) font files
[ 12 ] Bug #625626 - CVE-2010-2805 freetype: FT_Stream_EnterFrame() does not properly validate certain position values

Solution: Apply the appropriate updates.

This update can be installed with the yum update program. Use
su -c 'yum update freetype' at the command line.
For more information, refer to Managing Software with yum,
available at

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2010-2805
BugTraq ID: 42285
Common Vulnerability Exposure (CVE) ID: CVE-2010-2806
RedHat Security Advisories: RHSA-2010:0736
RedHat Security Advisories: RHSA-2010:0737
Common Vulnerability Exposure (CVE) ID: CVE-2010-2808
Common Vulnerability Exposure (CVE) ID: CVE-2010-3311
BugTraq ID: 43700
Debian Security Information: DSA-2116 (Google Search)
SuSE Security Announcement: SUSE-SR:2010:019 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2010-1797
BugTraq ID: 42151
XForce ISS Database: appleios-pdf-code-execution(60856)
Common Vulnerability Exposure (CVE) ID: CVE-2010-2498
Debian Security Information: DSA-2070 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2010-2499
Common Vulnerability Exposure (CVE) ID: CVE-2010-2500
Common Vulnerability Exposure (CVE) ID: CVE-2010-2519
Common Vulnerability Exposure (CVE) ID: CVE-2010-2520
Common Vulnerability Exposure (CVE) ID: CVE-2010-2527
Common Vulnerability Exposure (CVE) ID: CVE-2010-2541
CopyrightCopyright (c) 2010 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.