bdf/bdflib.c in FreeType prior to 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote malicious users to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 14.10 |
||
canonical ubuntu linux 15.04 |
||
freetype freetype |
||
debian debian linux 7.0 |
||
fedoraproject fedora 21 |
||
fedoraproject fedora 20 |
||
redhat enterprise linux server eus 7.1 |
||
redhat enterprise linux hpc node eus 7.1 |
||
redhat enterprise linux hpc node 6.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server eus 6.6.z |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux hpc node 7.0 |
||
redhat enterprise linux desktop 7.0 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |