FreeBSD : freetype2 -- Out of bounds read/write (1a0de610-a761-11e3-95fe-bcaec565249c)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Mateusz Jurczyk reports :

Out of bounds stack-based read/write in cf2_hintmap_build.

This is a critical vulnerability in the CFF Rasterizer code recently
contributed by Adobe, leading to potential arbitrary code execution in
the context of the FreeType2 library client.

See also :

http://savannah.nongnu.org/bugs/?41697
http://www.nessus.org/u?191fc057

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 72893 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now