Common Vulnerabilities and Exposures assigned an identifier CVE-2011-3256 to the following vulnerability: FreeType in CoreGraphics in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font. References: [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3256 [2] http://support.apple.com/kb/HT4999 [3] http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html Relevant upstream patch: [4] http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=9c98fbf634a83c6ea286395f0e788956eafd5aeb
Corrected in v2.4.7 upstream release: [5] http://sourceforge.net/projects/freetype/files/freetype2/2.4.7/README/view [6] http://freetype.sourceforge.net/index2.html#release-freetype-2.4.7
Created attachment 528829 [details] upstream patch
It seems that this issue not only affects the versions of FreeType as shipped with Red Hat Enterprise Linux 4, 5 and 6, but also affects the versions of FreeType embedded in other packages. I'm still not sure if ots can influence on something for Firefox and Thunderbird, because it would reduce its score considerably.
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Via RHSA-2011:1402 https://rhn.redhat.com/errata/RHSA-2011-1402.html
Created mingw32-freetype tracking bugs for this issue Affects: fedora-all [bug 749175]
Created freetype tracking bugs for this issue Affects: fedora-all [bug 749174]
This issue has been addressed in following products: Red Hat Enterprise Linux 5.6 EUS - Server Only Via RHSA-2012:0094 https://rhn.redhat.com/errata/RHSA-2012-0094.html