Security Advisory freetype security update

Advisory: RHSA-2006:0500-10
Type: Security Advisory
Severity: Moderate
Issued on: 2006-07-18
Last updated on: 2006-07-18
Affected Products: Red Hat Desktop (v. 3)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Enterprise Linux WS (v. 4)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
OVAL: N/A
CVEs (cve.mitre.org): CVE-2006-0747
CVE-2006-1861
CVE-2006-2661
CVE-2006-3467

Details

Updated freetype packages that fix several security flaws are now available
for Red Hat Enterprise Linux.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

FreeType is a free, high-quality, and portable font engine.

Chris Evans discovered several integer underflow and overflow flaws in the
FreeType font engine. If a user loads a carefully crafted font file with a
program linked against FreeType, it could cause the application to crash or
execute arbitrary code as the user. While it is uncommon for a user to
explicitly load a font file, there are several application file formats
which contain embedded fonts that are parsed by FreeType. (CVE-2006-0747,
CVE-2006-1861, CVE-2006-3467)

A NULL pointer dereference flaw was found in the FreeType font engine. An
application linked against FreeType can crash upon loading a malformed font
file. (CVE-2006-2661)

Users of FreeType should upgrade to these updated packages, which contain
backported patches to correct these issues.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Desktop (v. 3)
SRPMS:
freetype-2.1.4-4.0.rhel3.2.src.rpm
File outdated by:  RHSA-2008:0556		     b1a408493bba9185c162e4951be43b18
 
IA-32:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-devel-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     27f98060dc5e8a5788e836f4b68133d7
 
x86_64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     b4db4ba664bdf9ff605c2190a00c3724
freetype-devel-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     deac2e0429300513b2abb9ba75c62dad
 
Red Hat Desktop (v. 4)
SRPMS:
freetype-2.1.9-1.rhel4.4.src.rpm
File outdated by:  RHSA-2008:0556		     927ac506c112db88f65da71044aa70c7
 
IA-32:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-demos-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     1780063a39d2433520a775485bbd00c0
freetype-devel-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     64e3dc01cd9cb61a7adb3cd83113c8c6
freetype-utils-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     d18df0766f06ffd7710c2bd97cc32a65
 
x86_64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     26214e971a37c207903c87c057cc2b2e
freetype-demos-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     bd167657107e37c2f9e6c034bf126a87
freetype-devel-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     0b706cd7a4f0ef9c3e82870ce696c4df
freetype-utils-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     abbe3bf77fd9abe66133f1d509081ca7
 
Red Hat Enterprise Linux AS (v. 2.1)
SRPMS:
freetype-2.0.3-8.rhel2_1.2.src.rpm
File outdated by:  RHSA-2008:0558		     9c3d03656cc51a72e2753a0e27c4b474
 
IA-32:
freetype-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     407cfe8163092692652a64baf217074e
freetype-devel-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     5724f665a6b32fd026b7b338d888e57b
freetype-utils-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     a9a323b730d32b1fbcb8f619cec0b4a5
 
IA-64:
freetype-2.0.3-8.rhel2_1.2.ia64.rpm
File outdated by:  RHSA-2008:0558		     1cc6902e487dc3d94948e6fe0a91f2a7
freetype-devel-2.0.3-8.rhel2_1.2.ia64.rpm
File outdated by:  RHSA-2008:0558		     4d2e15bc0f6c0c2849b3826ab13f5c38
freetype-utils-2.0.3-8.rhel2_1.2.ia64.rpm
File outdated by:  RHSA-2008:0558		     8b9c3c8ea308328251bcec9d9cd4ee33
 
Red Hat Enterprise Linux AS (v. 3)
SRPMS:
freetype-2.1.4-4.0.rhel3.2.src.rpm
File outdated by:  RHSA-2008:0556		     b1a408493bba9185c162e4951be43b18
 
IA-32:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-devel-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     27f98060dc5e8a5788e836f4b68133d7
 
IA-64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.ia64.rpm
File outdated by:  RHSA-2008:0556		     715b086353e75c73557d093edf3fcd6d
freetype-devel-2.1.4-4.0.rhel3.2.ia64.rpm
File outdated by:  RHSA-2008:0556		     d3a2e21df27b6b0aaf61262426418f68
 
PPC:
freetype-2.1.4-4.0.rhel3.2.ppc.rpm
File outdated by:  RHSA-2008:0556		     5d170f7b9edd559bbecdcd67a222ee58
freetype-2.1.4-4.0.rhel3.2.ppc64.rpm
File outdated by:  RHSA-2008:0556		     fa5cfb6f58389bf5ff79d1eb20a1d751
freetype-devel-2.1.4-4.0.rhel3.2.ppc.rpm
File outdated by:  RHSA-2008:0556		     9c64d14c71deabb125d1904baed60454
 
s390:
freetype-2.1.4-4.0.rhel3.2.s390.rpm
File outdated by:  RHSA-2008:0556		     ac3122941009aaf309b658161f9ab376
freetype-devel-2.1.4-4.0.rhel3.2.s390.rpm
File outdated by:  RHSA-2008:0556		     6465809d682d960d20b34646f5c6a22b
 
s390x:
freetype-2.1.4-4.0.rhel3.2.s390.rpm
File outdated by:  RHSA-2008:0556		     ac3122941009aaf309b658161f9ab376
freetype-2.1.4-4.0.rhel3.2.s390x.rpm
File outdated by:  RHSA-2008:0556		     fbacd92a4dc87c11784617b4a60be2df
freetype-devel-2.1.4-4.0.rhel3.2.s390x.rpm
File outdated by:  RHSA-2008:0556		     d0854600a5492eb13ed216677a2e8962
 
x86_64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     b4db4ba664bdf9ff605c2190a00c3724
freetype-devel-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     deac2e0429300513b2abb9ba75c62dad
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
freetype-2.1.9-1.rhel4.4.src.rpm
File outdated by:  RHSA-2008:0556		     927ac506c112db88f65da71044aa70c7
 
IA-32:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-demos-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     1780063a39d2433520a775485bbd00c0
freetype-devel-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     64e3dc01cd9cb61a7adb3cd83113c8c6
freetype-utils-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     d18df0766f06ffd7710c2bd97cc32a65
 
IA-64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     271f588027cd34f8a0cc003f304d3f28
freetype-demos-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     bb5f5405f3b733a4bf541109a0f83dda
freetype-devel-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     31bc0ada2359d4f4bb10ce55e75acdaf
freetype-utils-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     1d942badb4b1387d8a4887afaa2609f1
 
PPC:
freetype-2.1.9-1.rhel4.4.ppc.rpm
File outdated by:  RHSA-2008:0556		     5814117f8a14e77a52833faf03b9a675
freetype-2.1.9-1.rhel4.4.ppc64.rpm
File outdated by:  RHSA-2008:0556		     b9db10734903abe8bc9c51df17929a53
freetype-demos-2.1.9-1.rhel4.4.ppc.rpm
File outdated by:  RHSA-2008:0556		     bfc62372116ffd66a312b492d4c914ed
freetype-devel-2.1.9-1.rhel4.4.ppc.rpm
File outdated by:  RHSA-2008:0556		     26b77e7e2e75d362f09464723761146e
freetype-utils-2.1.9-1.rhel4.4.ppc.rpm
File outdated by:  RHSA-2008:0556		     c031f11bb7c1ca2bcd45894a55f6443f
 
s390:
freetype-2.1.9-1.rhel4.4.s390.rpm
File outdated by:  RHSA-2008:0556		     c7b3866846999a9771481f8328a077bc
freetype-demos-2.1.9-1.rhel4.4.s390.rpm
File outdated by:  RHSA-2008:0556		     622b582663c82c3a88da772e240c9880
freetype-devel-2.1.9-1.rhel4.4.s390.rpm
File outdated by:  RHSA-2008:0556		     93476295362b4ceb86f09cf42a4fa850
freetype-utils-2.1.9-1.rhel4.4.s390.rpm
File outdated by:  RHSA-2008:0556		     9031b2ac4f7b65e1155bc0fcc54c59bb
 
s390x:
freetype-2.1.9-1.rhel4.4.s390.rpm
File outdated by:  RHSA-2008:0556		     c7b3866846999a9771481f8328a077bc
freetype-2.1.9-1.rhel4.4.s390x.rpm
File outdated by:  RHSA-2008:0556		     24b9f1ce612a1fd0792f1be6dd4f8d89
freetype-demos-2.1.9-1.rhel4.4.s390x.rpm
File outdated by:  RHSA-2008:0556		     3be671cb7587fb53884d10102193ccc1
freetype-devel-2.1.9-1.rhel4.4.s390x.rpm
File outdated by:  RHSA-2008:0556		     8062dd53300a5f562c08c382ab3a7607
freetype-utils-2.1.9-1.rhel4.4.s390x.rpm
File outdated by:  RHSA-2008:0556		     3138bf1a5526f05103c68968e56e1f9f
 
x86_64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     26214e971a37c207903c87c057cc2b2e
freetype-demos-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     bd167657107e37c2f9e6c034bf126a87
freetype-devel-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     0b706cd7a4f0ef9c3e82870ce696c4df
freetype-utils-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     abbe3bf77fd9abe66133f1d509081ca7
 
Red Hat Enterprise Linux ES (v. 2.1)
SRPMS:
freetype-2.0.3-8.rhel2_1.2.src.rpm
File outdated by:  RHSA-2008:0558		     9c3d03656cc51a72e2753a0e27c4b474
 
IA-32:
freetype-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     407cfe8163092692652a64baf217074e
freetype-devel-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     5724f665a6b32fd026b7b338d888e57b
freetype-utils-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     a9a323b730d32b1fbcb8f619cec0b4a5
 
Red Hat Enterprise Linux ES (v. 3)
SRPMS:
freetype-2.1.4-4.0.rhel3.2.src.rpm
File outdated by:  RHSA-2008:0556		     b1a408493bba9185c162e4951be43b18
 
IA-32:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-devel-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     27f98060dc5e8a5788e836f4b68133d7
 
IA-64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.ia64.rpm
File outdated by:  RHSA-2008:0556		     715b086353e75c73557d093edf3fcd6d
freetype-devel-2.1.4-4.0.rhel3.2.ia64.rpm
File outdated by:  RHSA-2008:0556		     d3a2e21df27b6b0aaf61262426418f68
 
x86_64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     b4db4ba664bdf9ff605c2190a00c3724
freetype-devel-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     deac2e0429300513b2abb9ba75c62dad
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
freetype-2.1.9-1.rhel4.4.src.rpm
File outdated by:  RHSA-2008:0556		     927ac506c112db88f65da71044aa70c7
 
IA-32:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-demos-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     1780063a39d2433520a775485bbd00c0
freetype-devel-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     64e3dc01cd9cb61a7adb3cd83113c8c6
freetype-utils-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     d18df0766f06ffd7710c2bd97cc32a65
 
IA-64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     271f588027cd34f8a0cc003f304d3f28
freetype-demos-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     bb5f5405f3b733a4bf541109a0f83dda
freetype-devel-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     31bc0ada2359d4f4bb10ce55e75acdaf
freetype-utils-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     1d942badb4b1387d8a4887afaa2609f1
 
x86_64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     26214e971a37c207903c87c057cc2b2e
freetype-demos-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     bd167657107e37c2f9e6c034bf126a87
freetype-devel-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     0b706cd7a4f0ef9c3e82870ce696c4df
freetype-utils-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     abbe3bf77fd9abe66133f1d509081ca7
 
Red Hat Enterprise Linux WS (v. 2.1)
SRPMS:
freetype-2.0.3-8.rhel2_1.2.src.rpm
File outdated by:  RHSA-2008:0558		     9c3d03656cc51a72e2753a0e27c4b474
 
IA-32:
freetype-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     407cfe8163092692652a64baf217074e
freetype-devel-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     5724f665a6b32fd026b7b338d888e57b
freetype-utils-2.0.3-8.rhel2_1.2.i386.rpm
File outdated by:  RHSA-2008:0558		     a9a323b730d32b1fbcb8f619cec0b4a5
 
Red Hat Enterprise Linux WS (v. 3)
SRPMS:
freetype-2.1.4-4.0.rhel3.2.src.rpm
File outdated by:  RHSA-2008:0556		     b1a408493bba9185c162e4951be43b18
 
IA-32:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-devel-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     27f98060dc5e8a5788e836f4b68133d7
 
IA-64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.ia64.rpm
File outdated by:  RHSA-2008:0556		     715b086353e75c73557d093edf3fcd6d
freetype-devel-2.1.4-4.0.rhel3.2.ia64.rpm
File outdated by:  RHSA-2008:0556		     d3a2e21df27b6b0aaf61262426418f68
 
x86_64:
freetype-2.1.4-4.0.rhel3.2.i386.rpm
File outdated by:  RHSA-2008:0556		     3e4cdc899ff5aa657e51270bcb886b37
freetype-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     b4db4ba664bdf9ff605c2190a00c3724
freetype-devel-2.1.4-4.0.rhel3.2.x86_64.rpm
File outdated by:  RHSA-2008:0556		     deac2e0429300513b2abb9ba75c62dad
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
freetype-2.1.9-1.rhel4.4.src.rpm
File outdated by:  RHSA-2008:0556		     927ac506c112db88f65da71044aa70c7
 
IA-32:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-demos-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     1780063a39d2433520a775485bbd00c0
freetype-devel-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     64e3dc01cd9cb61a7adb3cd83113c8c6
freetype-utils-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     d18df0766f06ffd7710c2bd97cc32a65
 
IA-64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     271f588027cd34f8a0cc003f304d3f28
freetype-demos-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     bb5f5405f3b733a4bf541109a0f83dda
freetype-devel-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     31bc0ada2359d4f4bb10ce55e75acdaf
freetype-utils-2.1.9-1.rhel4.4.ia64.rpm
File outdated by:  RHSA-2008:0556		     1d942badb4b1387d8a4887afaa2609f1
 
x86_64:
freetype-2.1.9-1.rhel4.4.i386.rpm
File outdated by:  RHSA-2008:0556		     f4dfc9303c4d4f2894a415475c7d7190
freetype-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     26214e971a37c207903c87c057cc2b2e
freetype-demos-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     bd167657107e37c2f9e6c034bf126a87
freetype-devel-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     0b706cd7a4f0ef9c3e82870ce696c4df
freetype-utils-2.1.9-1.rhel4.4.x86_64.rpm
File outdated by:  RHSA-2008:0556		     abbe3bf77fd9abe66133f1d509081ca7
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
SRPMS:
freetype-2.0.3-8.rhel2_1.2.src.rpm
File outdated by:  RHSA-2008:0558		     9c3d03656cc51a72e2753a0e27c4b474
 
IA-64:
freetype-2.0.3-8.rhel2_1.2.ia64.rpm
File outdated by:  RHSA-2008:0558		     1cc6902e487dc3d94948e6fe0a91f2a7
freetype-devel-2.0.3-8.rhel2_1.2.ia64.rpm
File outdated by:  RHSA-2008:0558		     4d2e15bc0f6c0c2849b3826ab13f5c38
freetype-utils-2.0.3-8.rhel2_1.2.ia64.rpm
File outdated by:  RHSA-2008:0558		     8b9c3c8ea308328251bcec9d9cd4ee33
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

183676 - CVE-2006-0747 Freetype integer underflow (CVE-2006-2661)
190593 - CVE-2006-1861 freetype multiple integer overflows (CVE-2006-3467)


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0747
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1861
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2661
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3467
http://www.redhat.com/security/updates/classification/#moderate

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/