[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 4104-1] freetype security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4104-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                          Adrian Bunk
April 01, 2025                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : freetype
Version        : 2.10.4+dfsg-1+deb11u2
CVE ID         : CVE-2025-27363

An out of bounds write with subglyph structures has been fixed in 
the font rendering library FreeType.

For Debian 11 bullseye, this problem has been fixed in version
2.10.4+dfsg-1+deb11u2.

We recommend that you upgrade your freetype packages.

For the detailed security status of freetype please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/freetype

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAmfrG4IACgkQiNJCh6LY
mLEqtQ/8CPXACyruHRPqaRoOyAOJ/hGd3XgYWVI24uYY0ZFeMvEITQ4+H82vKrqz
ae3lkK6cG3/LBu/44mA0ow1YIi7sN7B2bajgbR78WqVwG/N6cdBN+MRsRQFZCjAL
oq88CZ5lYSQ83//DlfCPZ/noPLcgvWp1kwj2Yk6FlOh0bzUPtsDDfYBR1CGu/L7b
iCOEV0rEuAokCrewjHyrS2smQrg921jHXkQArgmg+Z6ZG7NrGkJAAVBpEEz7zs0j
t2zhWklj+AIueCKMAHUojt7FMpcGv1xiiL0b2TTLVK3vziSMPliChMBhsTzxQDJK
JIk/A+BRe+/zNo+7Dz0PPDVTtkBb/Z4aOK60X6RwPoyONgsBms/EQD7PBG8wiXSZ
w1hZwg3xmvxdisFCfyeayDvcZaNBcrTTWXP49GffujppVhVdJInix+6mfFmeDq3C
RpakQbLRhuzQfsNeoRICF4UkoAxUxH5B0OptAVr7ITcv7qz+ftvjpvw+nDUQlD4h
pFTwcUzE07Lmw0zK1k8CtNdcC1A6Y62WdrZgTy1j0JBOZNXAPBVW5+Nb36EU/IIE
DM3XxuUIspdeYFJn5qJaWsipGwMHp8hu1SFr5URz9HUTYzRfKq03vkbuoTEFtQwf
353zx1LuX6jpogouODUyQ9TbSH4voBs8YjXNGUPQO9Fikt6aekQ=
=y04T
-----END PGP SIGNATURE-----


Reply to: