Skip to navigation

CVE Database

CVE-2006-1861

Impact: Moderate
Public: 2006-05-15
Bugzilla: 484437: CVE-2006-1861 freetype: multiple integer overflow vulnerabilities

Details

The MITRE CVE dictionary describes this issue as:

Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a crafted LWFN file in base/ftmac.c. NOTE: item 4 was originally identified by CVE-2006-2493.

Find out more about CVE-2006-1861 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (freetype) RHSA-2006:0500 July 18, 2006
Red Hat Enterprise Linux version 2.1 (freetype) RHSA-2009:1062 May 22, 2009
Red Hat Enterprise Linux version 3 (freetype) RHSA-2006:0500 July 18, 2006
Red Hat Enterprise Linux version 3 (freetype) RHSA-2009:0329 May 22, 2009
Red Hat Enterprise Linux version 4 (freetype) RHSA-2006:0500 July 18, 2006
Red Hat Enterprise Linux version 4 (freetype) RHSA-2009:0329 May 22, 2009

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.