Some vulnerabilities have been reported in FreeType, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

1) Various errors when processing specially crafted font files can be exploited to e.g. corrupt memory and cause heap-based buffer overflows by e.g. tricking a user into opening specially crafted fonts in an application using the library.

2) An integer overflow error in the "FT_Stream_Seek()" function in base/ftstream.c can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening specially crafted fonts in an application using the library.

The vulnerabilities are reported in versions prior to 2.4.0.

Solution
Update to version 2.4.0 or later.

Provided and/or discovered by
1) Robert Swiecki
2) Marc Schoenefeld, Red Hat Security Response.

Changelog
Further details available in Customer Area

Original Advisory
Robert Swiecki:
http://www.swiecki.net/security.html

Marc Schoenefeld:
https://bugzilla.redhat.com/show_bug.cgi?id=623625

FreeType:
http://savannah.nongnu.org/bugs/index.php?30082
http://savannah.nongnu.org/bugs/index.php?30083
http://savannah.nongnu.org/bugs/index.php?30106
http://savannah.nongnu.org/bugs/index.php?30135
http://savannah.nongnu.org/bugs/index.php?30248
http://savannah.nongnu.org/bugs/index.php?30249
http://savannah.nongnu.org/bugs/index.php?30263
http://savannah.nongnu.org/bugs/index.php?30306
http://savannah.nongnu.org/bugs/index.php?30361

Deep Links
Links available in Customer Area