oval:org.mitre.oval:def:21490

Definition Id: oval:org.mitre.oval:def:21490
 
Oval ID: oval:org.mitre.oval:def:21490
Title: RHSA-2010:0607: freetype security update (Important)
Description: Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.0.2 on the iPhone and iPod touch and before 3.2.2 on the iPad, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted CFF opcodes in embedded fonts in a PDF document, as demonstrated by JailbreakMe. NOTE: some of these details are obtained from third party information.
Family: unix Class: patch
Reference(s): RHSA-2010:0607-02
CESA-2010:0607
CVE-2010-1797
 Version: 4
Platform(s): Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 5
CentOS Linux 5
 Product(s): freetype
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:15802
 
Oval ID: oval:org.mitre.oval:def:15802
Title: The operating system installed on the system is CentOS Linux 5.x
Description: The operating system installed on the system is CentOS Linux 5.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:5
 Version: 7
Platform(s): CentOS Linux 5
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:21490
Definition Id: oval:org.mitre.oval:def:11414
 
Oval ID: oval:org.mitre.oval:def:11414
Title: The operating system installed on the system is Red Hat Enterprise Linux 5
Description: The operating system installed on the system is Red Hat Enterprise Linux 5.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:5
 Version: 7
Platform(s): Red Hat Enterprise Linux 5
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:21490