bdf/bdflib.c in FreeType prior to 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote malicious users to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.10 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 15.04 |
||
canonical ubuntu linux 10.04 |
||
freetype freetype |
||
debian debian linux 7.0 |
||
fedoraproject fedora 20 |
||
fedoraproject fedora 21 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server eus 6.6.z |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux hpc node 6.0 |
||
redhat enterprise linux hpc node 7.0 |
||
redhat enterprise linux server eus 7.1 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux hpc node eus 7.1 |
||
redhat enterprise linux workstation 6.0 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |