Freetype: Integer overflow in src/truetype/ttgxvar.c (tt_hvadvance_adjust): https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50462 https://github.com/freetype/freetype/commit/e6fda039ad638866b7a6a5d046f03278ba1b7611
Created chromium tracking bugs for this issue: Affects: epel-all [bug 2186431] Affects: fedora-all [bug 2186433] Created freetype tracking bugs for this issue: Affects: fedora-all [bug 2186430] Created java-11-openjdk tracking bugs for this issue: Affects: fedora-all [bug 2186434] Created java-17-openjdk tracking bugs for this issue: Affects: fedora-all [bug 2186435] Created java-latest-openjdk tracking bugs for this issue: Affects: epel-all [bug 2186432] Affects: fedora-all [bug 2186436] Created mingw-freetype tracking bugs for this issue: Affects: fedora-all [bug 2186437]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
This issue has been addressed in the following products: Red Hat Build of OpenJDK 11.0.21 Via RHSA-2023:5734 https://access.redhat.com/errata/RHSA-2023:5734
This issue has been addressed in the following products: Red Hat Build of OpenJDK 17.0.9 Via RHSA-2023:5745 https://access.redhat.com/errata/RHSA-2023:5745