FreeBSD : freetype -- LWFN Files Buffer Overflow Vulnerability (b975763f-5210-11db-8f1a-000a48049292)
High Nessus Plugin ID 22503
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionSecurityTracker reports :
A vulnerability was reported in FreeType. A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can create a specially crafted font file that, when loaded by the target user's system, will trigger an integer underflow or integer overflow and crash the application or execute arbitrary code on the target system.
Chris Evans reported these vulnerabilities.
Impact: A remote user can create a file that, when loaded by the target user, will execute arbitrary code on the target user's system.
SolutionUpdate the affected package.