Package libfreetype updated to version 2.10.1-alt1.1.p9.1 for branch c9f1 in task 260636.

Published: 2020-10-20

BDU:2020-05385

Уязвимость библиотеки FreeType браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: MEDIUM (6.5) Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

CVE-2020-15999

Published: 2020-11-03
Modified: 2024-11-21

CVE-2020-15999

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

openSUSE-SU-2020:1829
openSUSE-SU-2020:1829
20201118 TCMalloc viewer/dumper - TCMalloc Inspector Tool
20201118 TCMalloc viewer/dumper - TCMalloc Inspector Tool
https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html
https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html
https://crbug.com/1139963
https://crbug.com/1139963
https://googleprojectzero.blogspot.com/p/rca-cve-2020-15999.html
https://googleprojectzero.blogspot.com/p/rca-cve-2020-15999.html
FEDORA-2020-6b35849edd
FEDORA-2020-6b35849edd
GLSA-202011-12
GLSA-202011-12
GLSA-202012-04
GLSA-202012-04
GLSA-202401-19
GLSA-202401-19
https://security.netapp.com/advisory/ntap-20240812-0001/
DSA-4824
DSA-4824

Version: 2.1.0

Package libfreetype update in c9f1 on 2020-10-29

ALT-PU-2020-3165-1

Closed vulnerabilities

BDU:2020-05385

CVE-2020-15999