FreeType is a free, high-quality, portable font engine that can open andmanage font files. It also loads, hints, and renders individual glyphsefficiently. The freetype packages for Red Hat Enterprise Linux 4 provideboth the FreeType 1 and FreeType 2 font engines. The freetype packages forRed Hat Enterprise Linux 5 and 6 provide only the FreeType 2 font engine.Multiple input validation flaws were found in the way FreeType processedCID-keyed fonts. If a specially-crafted font file was loaded by anapplication linked against FreeType, it could cause the application tocrash or, potentially, execute arbitrary code with the privileges of theuser running the application. (CVE-2011-3439)Note: These issues only affected the FreeType 2 font engine.Users are advised to upgrade to these updated packages, which contain abackported patch to correct these issues. The X server must be restarted(log out, then log back in) for this update to take effect.