https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=250375
--- Comment #15 from [email protected] --- A commit references this bug: Author: tcberner Date: Thu Oct 22 16:19:24 UTC 2020 New revision: 552991 URL: https://svnweb.freebsd.org/changeset/ports/552991 Log: print/freetype2: Security fix release 2.10.4 From: https://sourceforge.net/projects/freetype/files/freetype2/2.10.4/"; I. IMPORTANT BUG FIXES - A heap buffer overflow has been found in the handling of embedded PNG bitmaps, introduced in FreeType version 2.6. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999 If you use option FT_CONFIG_OPTION_USE_PNG you should upgrade immediately. Partial exp-run by: antoine PR: 250375 MFH: 2020Q4 Security: CVE-2020-15999 Changes: head/print/freetype2/Makefile head/print/freetype2/distinfo head/print/freetype2/pkg-plist -- You are receiving this mail because: You are on the CC list for the bug. _______________________________________________ [email protected] mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-desktop To unsubscribe, send any mail to "[email protected]"
