Red Hat Bugzilla – Bug 234228
CVE-2007-1351 BDF font integer overflow
Last modified: 2007-11-30 17:07:43 EST
+++ This bug was initially created as a clone of Bug #234058 +++
iDEFENSE has reported a font related integer overflow.
CVE-2007-1351 describes an integer overflow in the way freetype parses a BDF
This flaw could allow an attacker to execute arbitrary code as the user running
an application linked against freetype.
This flaw probably also affects RHEL 2.1, 3, and 4.
Created attachment 151115 [details]
Ping on this flaw. Can we get some new packages rolled. I'd like to get an
errata to QA asap.
This is RHSA-2007:0150
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.