Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-319-1:03DE8
HistorySep 30, 2015 - 7:06 a.m.

[SECURITY] [DLA 319-1] freetype security update

2015-09-3007:06:52
lists.debian.org
11

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.066 Low

EPSS

Percentile

93.8%

JSON

Package : freetype
Version : 2.4.2-2.1+squeeze6
CVE ID : CVE-2014-9745 CVE-2014-9746 CVE-2014-9747
Debian Bug : 798619 798620

Sergey Gorbaty reported issues related to the FreeType font engine.
FreeType improperly handled certain malformed font files, allowing
remote attackers to cause a Denial of Service when specially crafted
font files were used.

For Debian 6 “Squeeze”, these issues have been fixed in freetype version
2.4.2-2.1+squeeze6. We recommend you to upgrade your freetype packages.

Learn more about the Debian Long Term Support (LTS) Project and how to
apply these updates at: https://wiki.debian.org/LTS/
Attachment:
signature.asc
Description: Digital signature

OSVersionArchitecturePackageVersionFilename
Debian6amd64libfreetype6-udeb< 2.4.2-2.1+squeeze6libfreetype6-udeb_2.4.2-2.1+squeeze6_amd64.deb
Debian7i386libfreetype6< 2.4.9-1.1+deb7u2libfreetype6_2.4.9-1.1+deb7u2_i386.deb
Debian8mipsfreetype2-demos< 2.5.2-3+deb8u1freetype2-demos_2.5.2-3+deb8u1_mips.deb
Debian7i386libfreetype6-dev< 2.4.9-1.1+deb7u2libfreetype6-dev_2.4.9-1.1+deb7u2_i386.deb
Debian7kfreebsd-i386libfreetype6< 2.4.9-1.1+deb7u2libfreetype6_2.4.9-1.1+deb7u2_kfreebsd-i386.deb
Debian7ia64libfreetype6-dev< 2.4.9-1.1+deb7u2libfreetype6-dev_2.4.9-1.1+deb7u2_ia64.deb
Debian7amd64freetype2-demos< 2.4.9-1.1+deb7u2freetype2-demos_2.4.9-1.1+deb7u2_amd64.deb
Debian7armellibfreetype6-dev< 2.4.9-1.1+deb7u2libfreetype6-dev_2.4.9-1.1+deb7u2_armel.deb
Debian7mipslibfreetype6-udeb< 2.4.9-1.1+deb7u2libfreetype6-udeb_2.4.9-1.1+deb7u2_mips.deb
Debian7armellibfreetype6-udeb< 2.4.9-1.1+deb7u2libfreetype6-udeb_2.4.9-1.1+deb7u2_armel.deb
Rows per page:
1-10 of 1111

Related

openvas 10
debian 1
securityvulns 2
nessus 13
f5 4
ubuntucve 3
prion 3
cve 3
debiancve 3
ubuntu 1
nvd 3
cvelist 3
ibm 2
oracle 1
openvas
openvas
Debian: Security Advisory (DLA-319-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3370-1 (freetype - security update)
2015-10-06 00:00:00
Debian: Security Advisory (DSA-3370-1)
2015-10-05 00:00:00
debian
debian
[SECURITY] [DSA 3370-1] freetype security update
2015-10-06 21:52:34
securityvulns
securityvulns
FreeType DoS
2015-10-11 00:00:00
[SECURITY] [DSA 3370-1] freetype security update
2015-10-11 00:00:00
nessus
nessus
Debian DLA-319-1 : freetype security update
2015-10-01 00:00:00
Debian DSA-3370-1 : freetype - security update
2015-10-07 00:00:00
openSUSE Security Update : freetype2 (openSUSE-2015-639)
2015-10-12 00:00:00
f5
f5
SOL52439336 - FreeType vulnerabilities CVE-2014-9746 and CVE-2014-9747
2016-09-06 00:00:00
K52439336 : FreeType vulnerabilities CVE-2014-9746 and CVE-2014-9747
2016-09-06 00:00:00
K72372334 : FreeType vulnerability CVE-2014-9745
2016-09-28 00:00:00
ubuntucve
ubuntucve
CVE-2014-9747
2016-06-07 00:00:00
CVE-2014-9745
2015-09-14 00:00:00
CVE-2014-9746
2016-06-07 00:00:00
prion
prion
Code injection
2016-06-07 14:06:00
Code injection
2015-09-14 20:59:00
Code injection
2016-06-07 14:06:00
cve
cve
CVE-2014-9747
2016-06-07 14:06:03
CVE-2014-9746
2016-06-07 14:06:01
CVE-2014-9745
2015-09-14 20:59:00
debiancve
debiancve
CVE-2014-9745
2015-09-14 20:59:00
CVE-2014-9746
2016-06-07 14:06:01
CVE-2014-9747
2016-06-07 14:06:03
ubuntu
ubuntu
FreeType vulnerabilities
2015-09-10 00:00:00
nvd
nvd
CVE-2014-9745
2015-09-14 20:59:00
CVE-2014-9747
2016-06-07 14:06:03
CVE-2014-9746
2016-06-07 14:06:01
cvelist
cvelist
CVE-2014-9745
2015-09-14 20:00:00
CVE-2014-9746
2016-06-07 14:00:00
CVE-2014-9747
2016-06-07 14:00:00
ibm
ibm
Security Bulletin: IBM Flex System Manager (FSM) is affected by multiple freetype2 vulnerabilities
2018-06-18 01:32:58
Security Bulletin: Vulnerabilities in krb5, giflib and freetype2 affect IBM BladeCenter Advanced Management Module (AMM) and IBM Flex System Chassis Management Module (CMM)
2023-04-14 14:32:25
oracle
oracle
CPU July 2018
2018-07-17 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.066 Low

EPSS

Percentile

93.8%

JSON
Related for DEBIAN:DLA-319-1:03DE8
openvas10debian1securityvulns2nessus13f54ubuntucve3prion3cve3debiancve3ubuntu1nvd3cvelist3ibm2oracle1