Three use-of-uninitialized conditions were found in psobjs.c in ps_parser_load_field, in t42parse.c in 42_parse_font_matrix and in t1load.c in tt1_parse_font_matrix. Upstream bug: https://savannah.nongnu.org/bugs/?41309 Upstream patch: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=8b281f83e8516535756f92dbf90940ac44bd45e1 CVE request: http://seclists.org/oss-sec/2015/q3/537
Created freetype tracking bugs for this issue: Affects: fedora-all [bug 1262384]
Created mingw-freetype tracking bugs for this issue: Affects: fedora-all [bug 1262385] Affects: epel-7 [bug 1262386]
It seems to me that this is already fixed in all maintained versions of Fedora. Check it please.
Upstream freetype git suggests that this issue was addressed in freetype-2.5.3. Therefore this issue is already fixed in all the maintained versions of Fedora.
CVE-2014-9746 is for accessing uninitialized memory issues CVE-2014-9747 is for the fix for CWE-372 ("Incomplete Internal State Distinction") issue in the sense that the possibility of immediates-only mode isn't checked (in t42parse.c)