Lucene search
This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2012-0467.NASLHistoryApr 11, 2012 - 12:00 a.m.
RHEL 5 / 6 : freetype (RHSA-2012:0467)
2012-04-1100:00:00
This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.244 Low
EPSS
Percentile
96.6%
The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0467 advisory.
-
freetype: heap buffer over-read in BDF parsing _bdf_is_atom() (#35597, #35598) (CVE-2012-1126)
-
freetype: heap buffer over-read in BDF parsing _bdf_parse_glyphs() (#35599, #35600) (CVE-2012-1127)
-
freetype: heap buffer over-read in PCF parser pcf_get_properties() (#35603) (CVE-2012-1130)
-
freetype: incorrect type cast allowing input sanity check bypass in ft_smooth_render_generic() (#35604) (CVE-2012-1131)
-
freetype: heap buffer over-read in Type1 parser parse_subrs() (#35606) (CVE-2012-1132)
-
freetype: limited heap buffer overflow in Type1 parser T1_Get_Private_Dict() (#35608) (CVE-2012-1134)
-
freetype: uninitialized pointer use in BDF parser _bdf_parse_glyphs() (#35641) (CVE-2012-1136)
-
freetype: heap buffer off-by-one in BDF parsing _bdf_list_ensure() (#35643) (CVE-2012-1137)
-
freetype: data buffer underflow in BDF parser _bdf_parse_glyphs() (#35656) (CVE-2012-1139)
-
freetype: multiple buffer over-read in PS parser conversion functions (#35657) (CVE-2012-1140)
-
freetype: BDF parser _bdf_list_split() fails to properly initialize field array (#35658) (CVE-2012-1141)
-
freetype: incorrect computation of number of glyphs in FNT_Face_Init() for FNT/FON files (#35659) (CVE-2012-1142)
-
freetype: integer divide by zero in FT_DivFix() (#35660) (CVE-2012-1143)
-
freetype: insufficient checking of first outline point in TTF parser (#35689) (CVE-2012-1144)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2012:0467. The text
# itself is copyright (C) Red Hat, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(58674);
script_version("1.25");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/27");
script_cve_id(
"CVE-2012-1126",
"CVE-2012-1127",
"CVE-2012-1130",
"CVE-2012-1131",
"CVE-2012-1132",
"CVE-2012-1134",
"CVE-2012-1136",
"CVE-2012-1137",
"CVE-2012-1139",
"CVE-2012-1140",
"CVE-2012-1141",
"CVE-2012-1142",
"CVE-2012-1143",
"CVE-2012-1144"
);
script_bugtraq_id(52318);
script_xref(name:"RHSA", value:"2012:0467");
script_name(english:"RHEL 5 / 6 : freetype (RHSA-2012:0467)");
script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing one or more security updates for freetype.");
script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as
referenced in the RHSA-2012:0467 advisory.
- freetype: heap buffer over-read in BDF parsing _bdf_is_atom() (#35597, #35598) (CVE-2012-1126)
- freetype: heap buffer over-read in BDF parsing _bdf_parse_glyphs() (#35599, #35600) (CVE-2012-1127)
- freetype: heap buffer over-read in PCF parser pcf_get_properties() (#35603) (CVE-2012-1130)
- freetype: incorrect type cast allowing input sanity check bypass in ft_smooth_render_generic() (#35604)
(CVE-2012-1131)
- freetype: heap buffer over-read in Type1 parser parse_subrs() (#35606) (CVE-2012-1132)
- freetype: limited heap buffer overflow in Type1 parser T1_Get_Private_Dict() (#35608) (CVE-2012-1134)
- freetype: uninitialized pointer use in BDF parser _bdf_parse_glyphs() (#35641) (CVE-2012-1136)
- freetype: heap buffer off-by-one in BDF parsing _bdf_list_ensure() (#35643) (CVE-2012-1137)
- freetype: data buffer underflow in BDF parser _bdf_parse_glyphs() (#35656) (CVE-2012-1139)
- freetype: multiple buffer over-read in PS parser conversion functions (#35657) (CVE-2012-1140)
- freetype: BDF parser _bdf_list_split() fails to properly initialize field array (#35658) (CVE-2012-1141)
- freetype: incorrect computation of number of glyphs in FNT_Face_Init() for FNT/FON files (#35659)
(CVE-2012-1142)
- freetype: integer divide by zero in FT_DivFix() (#35660) (CVE-2012-1143)
- freetype: insufficient checking of first outline point in TTF parser (#35689) (CVE-2012-1144)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# https://access.redhat.com/security/data/csaf/v2/advisories/2012/rhsa-2012_0467.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?290cf207");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2012:0467");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/updates/classification/#important");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800581");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800583");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800587");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800589");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800590");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800592");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800594");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800595");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800598");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800600");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800602");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800604");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800606");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=800607");
script_set_attribute(attribute:"solution", value:
"Update the RHEL freetype package based on the guidance in RHSA-2012:0467.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2012-1126");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2012-1143");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_cwe_id(122, 125, 369, 787);
script_set_attribute(attribute:"vendor_severity", value:"Important");
script_set_attribute(attribute:"vuln_publication_date", value:"2012/04/25");
script_set_attribute(attribute:"patch_publication_date", value:"2012/04/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/04/11");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:freetype");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:freetype-demos");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:freetype-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Red Hat Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("redhat_repos.nasl", "ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release_list(operator: 'ge', os_version: os_ver, rhel_versions: ['5','6'])) audit(AUDIT_OS_NOT, 'Red Hat 5.x / 6.x', 'Red Hat ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);
var constraints = [
{
'repo_relative_urls': [
'content/dist/rhel/client/5/5Client/i386/debug',
'content/dist/rhel/client/5/5Client/i386/os',
'content/dist/rhel/client/5/5Client/i386/source/SRPMS',
'content/dist/rhel/client/5/5Client/x86_64/debug',
'content/dist/rhel/client/5/5Client/x86_64/os',
'content/dist/rhel/client/5/5Client/x86_64/source/SRPMS',
'content/dist/rhel/power/5/5Server/ppc/debug',
'content/dist/rhel/power/5/5Server/ppc/os',
'content/dist/rhel/power/5/5Server/ppc/source/SRPMS',
'content/dist/rhel/server/5/5Server/i386/debug',
'content/dist/rhel/server/5/5Server/i386/os',
'content/dist/rhel/server/5/5Server/i386/source/SRPMS',
'content/dist/rhel/server/5/5Server/x86_64/debug',
'content/dist/rhel/server/5/5Server/x86_64/os',
'content/dist/rhel/server/5/5Server/x86_64/source/SRPMS',
'content/dist/rhel/system-z/5/5Server/s390x/debug',
'content/dist/rhel/system-z/5/5Server/s390x/os',
'content/dist/rhel/system-z/5/5Server/s390x/source/SRPMS',
'content/dist/rhel/workstation/5/5Client/i386/debug',
'content/dist/rhel/workstation/5/5Client/i386/desktop/debug',
'content/dist/rhel/workstation/5/5Client/i386/desktop/os',
'content/dist/rhel/workstation/5/5Client/i386/desktop/source/SRPMS',
'content/dist/rhel/workstation/5/5Client/i386/os',
'content/dist/rhel/workstation/5/5Client/i386/source/SRPMS',
'content/dist/rhel/workstation/5/5Client/x86_64/debug',
'content/dist/rhel/workstation/5/5Client/x86_64/desktop/debug',
'content/dist/rhel/workstation/5/5Client/x86_64/desktop/os',
'content/dist/rhel/workstation/5/5Client/x86_64/desktop/source/SRPMS',
'content/dist/rhel/workstation/5/5Client/x86_64/os',
'content/dist/rhel/workstation/5/5Client/x86_64/source/SRPMS',
'content/fastrack/rhel/client/5/i386/debug',
'content/fastrack/rhel/client/5/i386/os',
'content/fastrack/rhel/client/5/i386/source/SRPMS',
'content/fastrack/rhel/client/5/x86_64/debug',
'content/fastrack/rhel/client/5/x86_64/os',
'content/fastrack/rhel/client/5/x86_64/source/SRPMS',
'content/fastrack/rhel/power/5/ppc/debug',
'content/fastrack/rhel/power/5/ppc/os',
'content/fastrack/rhel/power/5/ppc/source/SRPMS',
'content/fastrack/rhel/server/5/i386/debug',
'content/fastrack/rhel/server/5/i386/os',
'content/fastrack/rhel/server/5/i386/source/SRPMS',
'content/fastrack/rhel/server/5/x86_64/debug',
'content/fastrack/rhel/server/5/x86_64/os',
'content/fastrack/rhel/server/5/x86_64/source/SRPMS',
'content/fastrack/rhel/system-z/5/s390x/debug',
'content/fastrack/rhel/system-z/5/s390x/os',
'content/fastrack/rhel/system-z/5/s390x/source/SRPMS',
'content/fastrack/rhel/workstation/5/i386/debug',
'content/fastrack/rhel/workstation/5/i386/desktop/debug',
'content/fastrack/rhel/workstation/5/i386/desktop/os',
'content/fastrack/rhel/workstation/5/i386/desktop/source/SRPMS',
'content/fastrack/rhel/workstation/5/i386/os',
'content/fastrack/rhel/workstation/5/i386/source/SRPMS',
'content/fastrack/rhel/workstation/5/x86_64/debug',
'content/fastrack/rhel/workstation/5/x86_64/desktop/debug',
'content/fastrack/rhel/workstation/5/x86_64/desktop/os',
'content/fastrack/rhel/workstation/5/x86_64/desktop/source/SRPMS',
'content/fastrack/rhel/workstation/5/x86_64/os',
'content/fastrack/rhel/workstation/5/x86_64/source/SRPMS'
],
'pkgs': [
{'reference':'freetype-2.2.1-31.el5_8.1', 'cpu':'i386', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.2.1-31.el5_8.1', 'cpu':'ppc', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.2.1-31.el5_8.1', 'cpu':'ppc64', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.2.1-31.el5_8.1', 'cpu':'s390', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.2.1-31.el5_8.1', 'cpu':'s390x', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.2.1-31.el5_8.1', 'cpu':'x86_64', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.2.1-31.el5_8.1', 'cpu':'i386', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.2.1-31.el5_8.1', 'cpu':'ppc', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.2.1-31.el5_8.1', 'cpu':'s390x', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.2.1-31.el5_8.1', 'cpu':'x86_64', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.2.1-31.el5_8.1', 'cpu':'i386', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.2.1-31.el5_8.1', 'cpu':'ppc', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.2.1-31.el5_8.1', 'cpu':'ppc64', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.2.1-31.el5_8.1', 'cpu':'s390', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.2.1-31.el5_8.1', 'cpu':'s390x', 'release':'5', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.2.1-31.el5_8.1', 'cpu':'x86_64', 'release':'5', 'rpm_spec_vers_cmp':TRUE}
]
},
{
'repo_relative_urls': [
'content/dist/rhel/client/6/6Client/i386/debug',
'content/dist/rhel/client/6/6Client/i386/optional/debug',
'content/dist/rhel/client/6/6Client/i386/optional/os',
'content/dist/rhel/client/6/6Client/i386/optional/source/SRPMS',
'content/dist/rhel/client/6/6Client/i386/os',
'content/dist/rhel/client/6/6Client/i386/source/SRPMS',
'content/dist/rhel/client/6/6Client/x86_64/debug',
'content/dist/rhel/client/6/6Client/x86_64/optional/debug',
'content/dist/rhel/client/6/6Client/x86_64/optional/os',
'content/dist/rhel/client/6/6Client/x86_64/optional/source/SRPMS',
'content/dist/rhel/client/6/6Client/x86_64/os',
'content/dist/rhel/client/6/6Client/x86_64/source/SRPMS',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/debug',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/optional/debug',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/optional/os',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/optional/source/SRPMS',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/os',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/scalablefilesystem/debug',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/scalablefilesystem/os',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/scalablefilesystem/source/SRPMS',
'content/dist/rhel/computenode/6/6ComputeNode/x86_64/source/SRPMS',
'content/dist/rhel/power/6/6Server/ppc64/debug',
'content/dist/rhel/power/6/6Server/ppc64/optional/debug',
'content/dist/rhel/power/6/6Server/ppc64/optional/os',
'content/dist/rhel/power/6/6Server/ppc64/optional/source/SRPMS',
'content/dist/rhel/power/6/6Server/ppc64/os',
'content/dist/rhel/power/6/6Server/ppc64/source/SRPMS',
'content/dist/rhel/server/6/6Server/i386/debug',
'content/dist/rhel/server/6/6Server/i386/highavailability/debug',
'content/dist/rhel/server/6/6Server/i386/highavailability/os',
'content/dist/rhel/server/6/6Server/i386/highavailability/source/SRPMS',
'content/dist/rhel/server/6/6Server/i386/loadbalancer/debug',
'content/dist/rhel/server/6/6Server/i386/loadbalancer/os',
'content/dist/rhel/server/6/6Server/i386/loadbalancer/source/SRPMS',
'content/dist/rhel/server/6/6Server/i386/optional/debug',
'content/dist/rhel/server/6/6Server/i386/optional/os',
'content/dist/rhel/server/6/6Server/i386/optional/source/SRPMS',
'content/dist/rhel/server/6/6Server/i386/os',
'content/dist/rhel/server/6/6Server/i386/resilientstorage/debug',
'content/dist/rhel/server/6/6Server/i386/resilientstorage/os',
'content/dist/rhel/server/6/6Server/i386/resilientstorage/source/SRPMS',
'content/dist/rhel/server/6/6Server/i386/source/SRPMS',
'content/dist/rhel/server/6/6Server/x86_64/debug',
'content/dist/rhel/server/6/6Server/x86_64/highavailability/debug',
'content/dist/rhel/server/6/6Server/x86_64/highavailability/os',
'content/dist/rhel/server/6/6Server/x86_64/highavailability/source/SRPMS',
'content/dist/rhel/server/6/6Server/x86_64/loadbalancer/debug',
'content/dist/rhel/server/6/6Server/x86_64/loadbalancer/os',
'content/dist/rhel/server/6/6Server/x86_64/loadbalancer/source/SRPMS',
'content/dist/rhel/server/6/6Server/x86_64/optional/debug',
'content/dist/rhel/server/6/6Server/x86_64/optional/os',
'content/dist/rhel/server/6/6Server/x86_64/optional/source/SRPMS',
'content/dist/rhel/server/6/6Server/x86_64/os',
'content/dist/rhel/server/6/6Server/x86_64/resilientstorage/debug',
'content/dist/rhel/server/6/6Server/x86_64/resilientstorage/os',
'content/dist/rhel/server/6/6Server/x86_64/resilientstorage/source/SRPMS',
'content/dist/rhel/server/6/6Server/x86_64/scalablefilesystem/debug',
'content/dist/rhel/server/6/6Server/x86_64/scalablefilesystem/os',
'content/dist/rhel/server/6/6Server/x86_64/scalablefilesystem/source/SRPMS',
'content/dist/rhel/server/6/6Server/x86_64/source/SRPMS',
'content/dist/rhel/system-z/6/6Server/s390x/debug',
'content/dist/rhel/system-z/6/6Server/s390x/optional/debug',
'content/dist/rhel/system-z/6/6Server/s390x/optional/os',
'content/dist/rhel/system-z/6/6Server/s390x/optional/source/SRPMS',
'content/dist/rhel/system-z/6/6Server/s390x/os',
'content/dist/rhel/system-z/6/6Server/s390x/source/SRPMS',
'content/dist/rhel/workstation/6/6Workstation/i386/debug',
'content/dist/rhel/workstation/6/6Workstation/i386/optional/debug',
'content/dist/rhel/workstation/6/6Workstation/i386/optional/os',
'content/dist/rhel/workstation/6/6Workstation/i386/optional/source/SRPMS',
'content/dist/rhel/workstation/6/6Workstation/i386/os',
'content/dist/rhel/workstation/6/6Workstation/i386/source/SRPMS',
'content/dist/rhel/workstation/6/6Workstation/x86_64/debug',
'content/dist/rhel/workstation/6/6Workstation/x86_64/optional/debug',
'content/dist/rhel/workstation/6/6Workstation/x86_64/optional/os',
'content/dist/rhel/workstation/6/6Workstation/x86_64/optional/source/SRPMS',
'content/dist/rhel/workstation/6/6Workstation/x86_64/os',
'content/dist/rhel/workstation/6/6Workstation/x86_64/scalablefilesystem/debug',
'content/dist/rhel/workstation/6/6Workstation/x86_64/scalablefilesystem/os',
'content/dist/rhel/workstation/6/6Workstation/x86_64/scalablefilesystem/source/SRPMS',
'content/dist/rhel/workstation/6/6Workstation/x86_64/source/SRPMS',
'content/fastrack/rhel/client/6/i386/debug',
'content/fastrack/rhel/client/6/i386/optional/debug',
'content/fastrack/rhel/client/6/i386/optional/os',
'content/fastrack/rhel/client/6/i386/optional/source/SRPMS',
'content/fastrack/rhel/client/6/i386/os',
'content/fastrack/rhel/client/6/i386/source/SRPMS',
'content/fastrack/rhel/client/6/x86_64/debug',
'content/fastrack/rhel/client/6/x86_64/optional/debug',
'content/fastrack/rhel/client/6/x86_64/optional/os',
'content/fastrack/rhel/client/6/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/client/6/x86_64/os',
'content/fastrack/rhel/client/6/x86_64/source/SRPMS',
'content/fastrack/rhel/computenode/6/x86_64/debug',
'content/fastrack/rhel/computenode/6/x86_64/optional/debug',
'content/fastrack/rhel/computenode/6/x86_64/optional/os',
'content/fastrack/rhel/computenode/6/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/computenode/6/x86_64/os',
'content/fastrack/rhel/computenode/6/x86_64/scalablefilesystem/debug',
'content/fastrack/rhel/computenode/6/x86_64/scalablefilesystem/os',
'content/fastrack/rhel/computenode/6/x86_64/scalablefilesystem/source/SRPMS',
'content/fastrack/rhel/computenode/6/x86_64/source/SRPMS',
'content/fastrack/rhel/power/6/ppc64/debug',
'content/fastrack/rhel/power/6/ppc64/optional/debug',
'content/fastrack/rhel/power/6/ppc64/optional/os',
'content/fastrack/rhel/power/6/ppc64/optional/source/SRPMS',
'content/fastrack/rhel/power/6/ppc64/os',
'content/fastrack/rhel/power/6/ppc64/source/SRPMS',
'content/fastrack/rhel/server/6/i386/debug',
'content/fastrack/rhel/server/6/i386/highavailability/debug',
'content/fastrack/rhel/server/6/i386/highavailability/os',
'content/fastrack/rhel/server/6/i386/highavailability/source/SRPMS',
'content/fastrack/rhel/server/6/i386/loadbalancer/debug',
'content/fastrack/rhel/server/6/i386/loadbalancer/os',
'content/fastrack/rhel/server/6/i386/loadbalancer/source/SRPMS',
'content/fastrack/rhel/server/6/i386/optional/debug',
'content/fastrack/rhel/server/6/i386/optional/os',
'content/fastrack/rhel/server/6/i386/optional/source/SRPMS',
'content/fastrack/rhel/server/6/i386/os',
'content/fastrack/rhel/server/6/i386/resilientstorage/debug',
'content/fastrack/rhel/server/6/i386/resilientstorage/os',
'content/fastrack/rhel/server/6/i386/resilientstorage/source/SRPMS',
'content/fastrack/rhel/server/6/i386/source/SRPMS',
'content/fastrack/rhel/server/6/x86_64/debug',
'content/fastrack/rhel/server/6/x86_64/highavailability/debug',
'content/fastrack/rhel/server/6/x86_64/highavailability/os',
'content/fastrack/rhel/server/6/x86_64/highavailability/source/SRPMS',
'content/fastrack/rhel/server/6/x86_64/loadbalancer/debug',
'content/fastrack/rhel/server/6/x86_64/loadbalancer/os',
'content/fastrack/rhel/server/6/x86_64/loadbalancer/source/SRPMS',
'content/fastrack/rhel/server/6/x86_64/optional/debug',
'content/fastrack/rhel/server/6/x86_64/optional/os',
'content/fastrack/rhel/server/6/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/server/6/x86_64/os',
'content/fastrack/rhel/server/6/x86_64/resilientstorage/debug',
'content/fastrack/rhel/server/6/x86_64/resilientstorage/os',
'content/fastrack/rhel/server/6/x86_64/resilientstorage/source/SRPMS',
'content/fastrack/rhel/server/6/x86_64/scalablefilesystem/debug',
'content/fastrack/rhel/server/6/x86_64/scalablefilesystem/os',
'content/fastrack/rhel/server/6/x86_64/scalablefilesystem/source/SRPMS',
'content/fastrack/rhel/server/6/x86_64/source/SRPMS',
'content/fastrack/rhel/system-z/6/s390x/debug',
'content/fastrack/rhel/system-z/6/s390x/optional/debug',
'content/fastrack/rhel/system-z/6/s390x/optional/os',
'content/fastrack/rhel/system-z/6/s390x/optional/source/SRPMS',
'content/fastrack/rhel/system-z/6/s390x/os',
'content/fastrack/rhel/system-z/6/s390x/source/SRPMS',
'content/fastrack/rhel/workstation/6/i386/debug',
'content/fastrack/rhel/workstation/6/i386/optional/debug',
'content/fastrack/rhel/workstation/6/i386/optional/os',
'content/fastrack/rhel/workstation/6/i386/optional/source/SRPMS',
'content/fastrack/rhel/workstation/6/i386/os',
'content/fastrack/rhel/workstation/6/i386/source/SRPMS',
'content/fastrack/rhel/workstation/6/x86_64/debug',
'content/fastrack/rhel/workstation/6/x86_64/optional/debug',
'content/fastrack/rhel/workstation/6/x86_64/optional/os',
'content/fastrack/rhel/workstation/6/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/workstation/6/x86_64/os',
'content/fastrack/rhel/workstation/6/x86_64/scalablefilesystem/debug',
'content/fastrack/rhel/workstation/6/x86_64/scalablefilesystem/os',
'content/fastrack/rhel/workstation/6/x86_64/scalablefilesystem/source/SRPMS',
'content/fastrack/rhel/workstation/6/x86_64/source/SRPMS'
],
'pkgs': [
{'reference':'freetype-2.3.11-6.el6_2.9', 'cpu':'i686', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.3.11-6.el6_2.9', 'cpu':'ppc', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.3.11-6.el6_2.9', 'cpu':'ppc64', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.3.11-6.el6_2.9', 'cpu':'s390', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.3.11-6.el6_2.9', 'cpu':'s390x', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-2.3.11-6.el6_2.9', 'cpu':'x86_64', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.3.11-6.el6_2.9', 'cpu':'i686', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.3.11-6.el6_2.9', 'cpu':'ppc64', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.3.11-6.el6_2.9', 'cpu':'s390x', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-demos-2.3.11-6.el6_2.9', 'cpu':'x86_64', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.3.11-6.el6_2.9', 'cpu':'i686', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.3.11-6.el6_2.9', 'cpu':'ppc', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.3.11-6.el6_2.9', 'cpu':'ppc64', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.3.11-6.el6_2.9', 'cpu':'s390', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.3.11-6.el6_2.9', 'cpu':'s390x', 'release':'6', 'rpm_spec_vers_cmp':TRUE},
{'reference':'freetype-devel-2.3.11-6.el6_2.9', 'cpu':'x86_64', 'release':'6', 'rpm_spec_vers_cmp':TRUE}
]
}
];
var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);
var flag = 0;
foreach var constraint_array ( constraints ) {
var repo_relative_urls = NULL;
if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];
foreach var pkg ( constraint_array['pkgs'] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
var cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
_release &&
rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
(applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
var extra = NULL;
if (isnull(applicable_repo_urls) || !applicable_repo_urls) extra = rpm_report_get() + redhat_report_repo_caveat();
else extra = rpm_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'freetype / freetype-demos / freetype-devel');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | freetype | p-cpe:/a:redhat:enterprise_linux:freetype |
| redhat | enterprise_linux | freetype-demos | p-cpe:/a:redhat:enterprise_linux:freetype-demos |
| redhat | enterprise_linux | freetype-devel | p-cpe:/a:redhat:enterprise_linux:freetype-devel |
| redhat | enterprise_linux | 5 | cpe:/o:redhat:enterprise_linux:5 |
| redhat | enterprise_linux | 6 | cpe:/o:redhat:enterprise_linux:6 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1126
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1127
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1130
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1131
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1132
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1134
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1136
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1137
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1139
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1140
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1141
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1142
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1143
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1144
www.nessus.org/u?290cf207
access.redhat.com/errata/RHSA-2012:0467
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=800581
bugzilla.redhat.com/show_bug.cgi?id=800583
bugzilla.redhat.com/show_bug.cgi?id=800587
bugzilla.redhat.com/show_bug.cgi?id=800589
bugzilla.redhat.com/show_bug.cgi?id=800590
bugzilla.redhat.com/show_bug.cgi?id=800592
bugzilla.redhat.com/show_bug.cgi?id=800594
bugzilla.redhat.com/show_bug.cgi?id=800595
bugzilla.redhat.com/show_bug.cgi?id=800598
bugzilla.redhat.com/show_bug.cgi?id=800600
bugzilla.redhat.com/show_bug.cgi?id=800602
bugzilla.redhat.com/show_bug.cgi?id=800604
bugzilla.redhat.com/show_bug.cgi?id=800606
bugzilla.redhat.com/show_bug.cgi?id=800607
Related
nessus
nessus
Scientific Linux Security Update : freetype on SL5.x, SL6.x i386/x86_64 (20120410)
2012-08-01 00:00:00
CentOS 5 / 6 : freetype (CESA-2012:0467)
2012-04-11 00:00:00
Oracle Linux 5 / 6 : freetype (ELSA-2012-0467)
2013-07-12 00:00:00
redhat
redhat
(RHSA-2012:0467) Important: freetype security update
2012-04-10 00:00:00
openvas
openvas
CentOS Update for freetype CESA-2012:0467 centos6
2012-07-30 00:00:00
RedHat Update for freetype RHSA-2012:0467-01
2012-04-11 00:00:00
Oracle: Security Advisory (ELSA-2012-0467)
2015-10-06 00:00:00
oraclelinux
oraclelinux
freetype security update
2012-04-10 00:00:00
centos
centos
freetype security update
2012-04-10 21:09:43
gentoo
gentoo
FreeType: Multiple vulnerabilities
2012-04-17 00:00:00
mozilla
mozilla
Multiple security flaws fixed in FreeType v2.4.9 — Mozilla
2012-04-24 00:00:00
suse
suse
Security update for freetype2 (important)
2012-04-11 21:08:19
freetype2 update (important)
2012-04-12 10:09:06
Security update for freetype2 (important)
2012-04-11 20:08:18
ubuntu
ubuntu
FreeType vulnerabilities
2012-03-23 00:00:00
freebsd
freebsd
freetype -- multiple vulnerabilities
2012-03-08 00:00:00
mozilla -- multiple vulnerabilities
2012-04-24 00:00:00
securityvulns
securityvulns
FreeType multiple security vulnerabilitiles
2012-03-09 00:00:00
[SECURITY] [DSA 2428-1] freetype security update
2012-03-09 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-05-09 00:00:00
debian
debian
[SECURITY] [DSA 2428-1] freetype security update
2012-03-08 20:48:00
slackware
slackware
[slackware-security] freetype
2012-06-25 15:27:37
amazon
amazon
Important: freetype
2012-04-30 14:46:00
nvd
nvd
ubuntucve
ubuntucve
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:09:33
Denial Of Service (DoS)
2020-04-10 01:09:35
Arbitrary Code Execution
2020-04-10 01:09:33
cve
cve
cvelist
cvelist
prion
prion
Memory corruption
2012-04-25 10:10:00
Heap overflow
2012-04-25 10:10:00
Heap overflow
2012-04-25 10:10:00
debiancve
debiancve
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.244 Low
EPSS
Percentile
96.6%
Related for REDHAT-RHSA-2012-0467.NASL