SynopsisThe remote Debian host is missing a security-related update.
DescriptionRobert Swiecki discovered several vulnerabilities in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed.
Also, several buffer overflows were found in the included demo programs.
SolutionUpgrade the freetype packages.
For the stable distribution (lenny), these problems have been fixed in version 2.3.7-2+lenny2.