While fixing CVE-2010-2527 Marek Kašík discovered an additional buffer overflow in the ftmulti demo program. The demo application could crash or, possibly, lead to the execution of arbitrary code if an attacker were able to get a victim to load a malicious font file. This is CVE-2010-2541
Created attachment 433794 [details] Current proposed patch Please note, upstream has not yet taken this patch. They added a broken patch to their upstream git repository: http://git.savannah.gnu.org/cgit/freetype/freetype2-demos.git/commit/?id=3636982a7666bcfa0e47fb31d565314d1b3e7d78 Do not use that upstream patch, it doesn't fix anything.
Created freetype tracking bugs for this issue Affects: fedora-all [bug 613299]
This issue has been addressed in following products: Red Hat Enterprise Linux 3 Via RHSA-2010:0577 https://rhn.redhat.com/errata/RHSA-2010-0577.html
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Via RHSA-2010:0578 https://rhn.redhat.com/errata/RHSA-2010-0578.html