CVE-2007-2754

Name of the Vulnerable Software and Affected Versions Freetype versions prior to 2.3.4 Freetype-devel versions 2.0.3 Freetype-utils versions 2.0.3 Freetype2 versions (affected versions not specified) Freetype2-32bit versions (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the Freetype package, which can lead to disruption of confidentiality, integrity, and availability of protected information. Exploitation of these vulnerabilities can be done remotely. Specifically, an integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n points value, leading to an integer overflow and heap-based buffer overflow.

Recommendations For Freetype versions prior to 2.3.4, update to version 2.3.4 or later. For Freetype-devel versions 2.0.3, update to a version later than 2.0.3. For Freetype-utils versions 2.0.3, update to a version later than 2.0.3. For Freetype2 and Freetype2-32bit, at the moment, there is no information about a newer version that contains a fix for this vulnerability.