• info
• discussion
• exploit
• solution
• references

FreeType Compact Font Format (CFF) Multiple Stack Based Buffer Overflow Vulnerabilities

Solution:
Updates are available. Please see the references for more information.


Foxit Foxit Reader 3.0

• Foxit Foxit Reader
  http://www.foxitsoftware.com/downloads/download_links/downloadreader.p hp?tag=exe

Debian Linux 5.0 alpha

• Debian freetype2-demos_2.3.7-2+lenny3_alpha.deb
  http://security.debian.org/pool/updates/main/f/freetype/freetype2-demo s_2.3.7-2+lenny3_alpha.deb


• Debian libfreetype6-dev_2.3.7-2+lenny3_alpha.deb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6-d ev_2.3.7-2+lenny3_alpha.deb


• Debian libfreetype6-udeb_2.3.7-2+lenny3_alpha.udeb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6-u deb_2.3.7-2+lenny3_alpha.udeb


• Debian libfreetype6_2.3.7-2+lenny3_alpha.deb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6_2 .3.7-2+lenny3_alpha.deb

Foxit Foxit Reader 3.0 Build 1506

• Foxit Foxit Reader
  http://www.foxitsoftware.com/downloads/download_links/downloadreader.p hp?tag=exe

Ubuntu Ubuntu Linux 9.04 sparc

• Ubuntu freetype2-demos_2.3.9-4ubuntu0.3_sparc.deb
  http://ports.ubuntu.com/pool/universe/f/freetype/freetype2-demos_2.3.9 -4ubuntu0.3_sparc.deb


• Ubuntu libfreetype6-dev_2.3.9-4ubuntu0.3_sparc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-dev_2.3.9-4u buntu0.3_sparc.deb


• Ubuntu libfreetype6-udeb_2.3.9-4ubuntu0.3_sparc.udeb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-udeb_2.3.9-4 ubuntu0.3_sparc.udeb


• Ubuntu libfreetype6_2.3.9-4ubuntu0.3_sparc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6_2.3.9-4ubunt u0.3_sparc.deb

Ubuntu Ubuntu Linux 10.04 powerpc

• Ubuntu freetype2-demos_2.3.11-1ubuntu2.2_powerpc.deb
  http://ports.ubuntu.com/pool/universe/f/freetype/freetype2-demos_2.3.1 1-1ubuntu2.2_powerpc.deb


• Ubuntu libfreetype6-dev_2.3.11-1ubuntu2.2_powerpc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-dev_2.3.11-1 ubuntu2.2_powerpc.deb


• Ubuntu libfreetype6-udeb_2.3.11-1ubuntu2.2_powerpc.udeb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-udeb_2.3.11- 1ubuntu2.2_powerpc.udeb


• Ubuntu libfreetype6_2.3.11-1ubuntu2.2_powerpc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6_2.3.11-1ubun tu2.2_powerpc.deb

Ubuntu Ubuntu Linux 9.04 lpia

• Ubuntu freetype2-demos_2.3.9-4ubuntu0.3_lpia.deb
  http://ports.ubuntu.com/pool/universe/f/freetype/freetype2-demos_2.3.9 -4ubuntu0.3_lpia.deb


• Ubuntu libfreetype6-dev_2.3.9-4ubuntu0.3_lpia.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-dev_2.3.9-4u buntu0.3_lpia.deb


• Ubuntu libfreetype6-udeb_2.3.9-4ubuntu0.3_lpia.udeb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-udeb_2.3.9-4 ubuntu0.3_lpia.udeb


• Ubuntu libfreetype6_2.3.9-4ubuntu0.3_lpia.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6_2.3.9-4ubunt u0.3_lpia.deb

Debian Linux 5.0 armel

• Debian freetype2-demos_2.3.7-2+lenny3_armel.deb
  http://security.debian.org/pool/updates/main/f/freetype/freetype2-demo s_2.3.7-2+lenny3_armel.deb


• Debian libfreetype6-dev_2.3.7-2+lenny3_armel.deb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6-d ev_2.3.7-2+lenny3_armel.deb


• Debian libfreetype6-udeb_2.3.7-2+lenny3_armel.udeb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6-u deb_2.3.7-2+lenny3_armel.udeb


• Debian libfreetype6_2.3.7-2+lenny3_armel.deb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6_2 .3.7-2+lenny3_armel.deb

Ubuntu Ubuntu Linux 9.10 amd64

• Ubuntu freetype2-demos_2.3.9-5ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/universe/f/freetype/freetype2-d emos_2.3.9-5ubuntu0.2_amd64.deb


• Ubuntu libfreetype6-dev_2.3.9-5ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/f/freetype/libfreetype6-de v_2.3.9-5ubuntu0.2_amd64.deb


• Ubuntu libfreetype6-udeb_2.3.9-5ubuntu0.2_amd64.udeb
  http://security.ubuntu.com/ubuntu/pool/main/f/freetype/libfreetype6-ud eb_2.3.9-5ubuntu0.2_amd64.udeb


• Ubuntu libfreetype6_2.3.9-5ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/f/freetype/libfreetype6_2. 3.9-5ubuntu0.2_amd64.deb

Mandriva Linux Mandrake 2009.0 x86_64

• Mandriva lib64freetype6-2.3.7-1.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva lib64freetype6-devel-2.3.7-1.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva lib64freetype6-static-devel-2.3.7-1.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Enterprise Server 5

• Mandriva libfreetype6-2.3.7-1.3mdvmes5.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva libfreetype6-devel-2.3.7-1.3mdvmes5.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva libfreetype6-static-devel-2.3.7-1.3mdvmes5.1.i586.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 8.04 LTS i386

• Ubuntu freetype2-demos_2.3.5-1ubuntu4.8.04.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/universe/f/freetype/freetype2-d emos_2.3.5-1ubuntu4.8.04.4_i386.deb


• Ubuntu libfreetype6-dev_2.3.5-1ubuntu4.8.04.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/f/freetype/libfreetype6-de v_2.3.5-1ubuntu4.8.04.4_i386.deb


• Ubuntu libfreetype6-udeb_2.3.5-1ubuntu4.8.04.4_i386.udeb
  http://security.ubuntu.com/ubuntu/pool/universe/f/freetype/libfreetype 6-udeb_2.3.5-1ubuntu4.8.04.4_i386.udeb


• Ubuntu libfreetype6_2.3.5-1ubuntu4.8.04.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/f/freetype/libfreetype6_2. 3.5-1ubuntu4.8.04.4_i386.deb

Foxit Foxit Reader 3.1.4.1125

• Foxit Foxit Reader
  http://www.foxitsoftware.com/downloads/download_links/downloadreader.p hp?tag=exe

Ubuntu Ubuntu Linux 9.10 sparc

• Ubuntu freetype2-demos_2.3.9-5ubuntu0.2_sparc.deb
  http://ports.ubuntu.com/pool/universe/f/freetype/freetype2-demos_2.3.9 -5ubuntu0.2_sparc.deb


• Ubuntu libfreetype6-dev_2.3.9-5ubuntu0.2_sparc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-dev_2.3.9-5u buntu0.2_sparc.deb


• Ubuntu libfreetype6-udeb_2.3.9-5ubuntu0.2_sparc.udeb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-udeb_2.3.9-5 ubuntu0.2_sparc.udeb


• Ubuntu libfreetype6_2.3.9-5ubuntu0.2_sparc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6_2.3.9-5ubunt u0.2_sparc.deb

Debian Linux 5.0 mipsel

• Debian freetype2-demos_2.3.7-2+lenny3_mipsel.deb
  http://security.debian.org/pool/updates/main/f/freetype/freetype2-demo s_2.3.7-2+lenny3_mipsel.deb


• Debian libfreetype6-dev_2.3.7-2+lenny3_mipsel.deb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6-d ev_2.3.7-2+lenny3_mipsel.deb


• Debian libfreetype6-udeb_2.3.7-2+lenny3_mipsel.udeb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6-u deb_2.3.7-2+lenny3_mipsel.udeb


• Debian libfreetype6_2.3.7-2+lenny3_mipsel.deb
  http://security.debian.org/pool/updates/main/f/freetype/libfreetype6_2 .3.7-2+lenny3_mipsel.deb

Ubuntu Ubuntu Linux 9.04 powerpc

• Ubuntu freetype2-demos_2.3.9-4ubuntu0.3_powerpc.deb
  http://ports.ubuntu.com/pool/universe/f/freetype/freetype2-demos_2.3.9 -4ubuntu0.3_powerpc.deb


• Ubuntu libfreetype6-dev_2.3.9-4ubuntu0.3_powerpc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-dev_2.3.9-4u buntu0.3_powerpc.deb


• Ubuntu libfreetype6-udeb_2.3.9-4ubuntu0.3_powerpc.udeb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6-udeb_2.3.9-4 ubuntu0.3_powerpc.udeb


• Ubuntu libfreetype6_2.3.9-4ubuntu0.3_powerpc.deb
  http://ports.ubuntu.com/pool/main/f/freetype/libfreetype6_2.3.9-4ubunt u0.3_powerpc.deb

MandrakeSoft Corporate Server 4.0 x86_64

• Mandriva lib64freetype6-2.1.10-9.11.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva lib64freetype6-devel-2.1.10-9.11.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva lib64freetype6-static-devel-2.1.10-9.11.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/