FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-0747

This CVE name corresponds to:

Entered	Topic
2006-10-02	freetype -- LWFN Files Buffer Overflow Vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2006-0747 at cve.mitre.org

Details

Type	Candidate
Name	CVE-2006-0747
Phase	Assigned(20060217)

Description

Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values.

References

Source	Reference
BUGTRAQ	20060612 rPSA-2006-0100-1 freetype
CONFIRM	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=183676
CONFIRM	https://issues.rpath.com/browse/RPL-429
CONFIRM	http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm
CONFIRM	http://support.apple.com/kb/HT3549
APPLE	APPLE-SA-2009-05-12
DEBIAN	DSA-1095
MANDRIVA	MDKSA-2006:099
REDHAT	RHSA-2006:0500
SGI	20060701-01-U
SUNALERT	102705
SUSE	SUSE-SA:2006:037
UBUNTU	USN-291-1
CERT	TA09-133A
BID	18326
OVAL	oval:org.mitre.oval:def:9508
SECUNIA	35074
VUPEN	ADV-2007-0381
SECTRACK	1016522
SECUNIA	20525
SECUNIA	20591
SECUNIA	20638
SECUNIA	20791
SECUNIA	21062
SECUNIA	21135
SECUNIA	21385
SECUNIA	21701
SECUNIA	23939
VUPEN	ADV-2009-1297