Mateusz Jurczyk discovered multiple vulnerabilities in Freetype. Opening
malformed fonts may result in denial of service or the execution of
arbitrary code.
For the stable distribution (wheezy), these problems have been fixed in
version 2.4.9-1.1+deb7u1.
For the upcoming stable distribution (jessie), these problems have been
fixed in version 2.5.2-3.
For the unstable distribution (sid), these problems have been fixed in
version 2.5.2-3.
We recommend that you upgrade your freetype packages.