190693 – freetype memory allocaton integer overflow

Bug 190693 - freetype memory allocaton integer overflow

Summary: freetype memory allocaton integer overflow

Keywords:
Status:	CLOSED DUPLICATE of bug 190593
Alias:	None
Product:	Red Hat Enterprise Linux 4
Classification:	Red Hat
Component:	freetype
Sub Component:
Version:	4.0
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	---
Assignee:	Carl Worth (Ampere)
QA Contact:	Brock Organ
Docs Contact:
URL:
Whiteboard:	source=vendorsec,reported=20060305,im...
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-05-04 15:02 UTC by Josh Bressers
Modified:	2007-11-30 22:07 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2006-05-04 16:42:23 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)
Patch extracted from upstream CVS (57.34 KB, patch) 2006-05-04 15:02 UTC, Josh Bressers	no flags	Details \| Diff
View All

Description Josh Bressers 2006-05-04 15:02:37 UTC

Upstream has fixed a number of potential integer overflows when allocating
memory by modifying how memory is now allocated.

The patch take from CVS, then clean up is very large.  I don't know the source
well enough to determine how much of this is needed for our packages.

Comment 1 Josh Bressers 2006-05-04 15:02:39 UTC

Created attachment 128606 [details]
Patch extracted from upstream CVS

Comment 2 Josh Bressers 2006-05-04 16:42:23 UTC

We're including this as part of CVE-2006-1861 so I'm marking this a duplicate of
bug 190593

*** This bug has been marked as a duplicate of 190593 ***

Comment 3 Josh Bressers 2006-05-27 20:46:01 UTC

Lifting embargo

Note You need to log in before you can comment on or make changes to this bug.