Debian DSA-2070-1 : freetype - several vulnerabilities
Medium Nessus Plugin ID 47735
SynopsisThe remote Debian host is missing a security-related update.
DescriptionRobert Swiecki discovered several vulnerabilities in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed.
Also, several buffer overflows were found in the included demo programs.
SolutionUpgrade the freetype packages.
For the stable distribution (lenny), these problems have been fixed in version 2.3.7-2+lenny2.