CVE-2012-5668

Name of the Vulnerable Software and Affected Versions FreeType versions prior to 2.4.11

Description The issue allows context-dependent attackers to cause a denial of service, resulting in a crash due to a NULL pointer dereference. This is related to the improper handling of an "allocation error" in the bdf free font function when dealing with BDF fonts. The vulnerability can be exploited remotely, potentially leading to a disruption in the availability of protected information.

Recommendations For versions prior to 2.4.11, update to version 2.4.11 or later to resolve the issue. As a temporary workaround, consider restricting the use of BDF fonts until a patch is available.