Rapid7 Vulnerability & Exploit Database

RHSA-2012:0062: t1lib security update

Back to Search

RHSA-2012:0062: t1lib security update

Severity
8
CVSS
(AV:N/AC:H/Au:N/C:C/I:C/A:C)
Published
01/07/2011
Created
07/25/2018
Added
02/02/2012
Modified
07/04/2017

Description

The t1lib library allows you to rasterize bitmaps from PostScript Type 1fonts.Two heap-based buffer overflow flaws were found in the way t1lib processedAdobe Font Metrics (AFM) files. If a specially-crafted font file was openedby an application linked against t1lib, it could cause the application tocrash or, potentially, execute arbitrary code with the privileges of theuser running the application. (CVE-2010-2642, CVE-2011-0433)An invalid pointer dereference flaw was found in t1lib. A specially-craftedfont file could, when opened, cause an application linked against t1lib tocrash or, potentially, execute arbitrary code with the privileges of theuser running the application. (CVE-2011-0764)A use-after-free flaw was found in t1lib. A specially-crafted font filecould, when opened, cause an application linked against t1lib to crash or,potentially, execute arbitrary code with the privileges of the userrunning the application. (CVE-2011-1553)An off-by-one flaw was found in t1lib. A specially-crafted font file could,when opened, cause an application linked against t1lib to crash or,potentially, execute arbitrary code with the privileges of the user runningthe application. (CVE-2011-1554)An out-of-bounds memory read flaw was found in t1lib. A specially-craftedfont file could, when opened, cause an application linked against t1lib tocrash. (CVE-2011-1552)Red Hat would like to thank the Evince development team for reportingCVE-2010-2642. Upstream acknowledges Jon Larimer of IBM X-Force as theoriginal reporter of CVE-2010-2642.All users of t1lib are advised to upgrade to these updated packages, whichcontain backported patches to correct these issues. All applications linkedagainst t1lib must be restarted for this update to take effect.

Solution(s)

  • redhat-upgrade-t1lib
  • redhat-upgrade-t1lib-apps
  • redhat-upgrade-t1lib-debuginfo
  • redhat-upgrade-t1lib-devel
  • redhat-upgrade-t1lib-static

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;