 |
中(Moderate):freetypeのセキュリティアップデート
詳細
セキュリティ欠陥を修正したfreetypeのアップデートパッケージがRed Hat Enterprise Linux 2.1、3、4、および5で利用可能になりました。
このアップデートは、レッドハットセキュリティ対策チームによって、深刻度「中(Moderate)」のセキュリティ問題と評価されています。
FreeTypeは、高品質で移植可能なフリーのフォントエンジンです。
FreeTypeフォントエンジンでのTTFフォントファイルの処理で整数オーバーフローの欠陥が見つかりました。巧妙に作成されたフォントファイルをFreeTypeにリンクされたプログラムでロードした場合、アプリケーションがクラッシュしたり、任意のコードが実行される可能性があります。ユーザがフォントファイルを明示的にロードすることは一般的ではありませんが、FreeTypeによって解析される埋め込みフォントを含んだアプリケーションファイルフォーマットがいくつかあります。(CVE-2007-2754)
FreeTypeのユーザは、この問題を修正するバックポートパッチを含む上記アップデートパッケージにアップグレードしてください。
解決法
このアップデートを適用する前に、ご使用のシステムに関係するリリース済みのエラータ/Errataがすべて適用されていることを確認してください。
このアップデートは、Red Hat Networkを通じて入手できます。
このアップデートは、Red Hat Networkを通じて入手できます。
アップデートパッケージ
| RHEL Desktop Workstation (v. 5 client) | |
| IA-32: | |
| freetype-demos-2.2.1-19.el5.i386.rpm | b007f01db911edb1370e188599c94cac |
| freetype-devel-2.2.1-19.el5.i386.rpm | e95ec87819d744e7d35867dfd171a9d6 |
| x86_64: | |
| freetype-demos-2.2.1-19.el5.x86_64.rpm | 3671cca85c94063b11a4b5e0ba43023b |
| freetype-devel-2.2.1-19.el5.i386.rpm | e95ec87819d744e7d35867dfd171a9d6 |
| freetype-devel-2.2.1-19.el5.x86_64.rpm | 8e687e3c53856447cdea76740c7d9485 |
| Red Hat Desktop (v. 3) | |
| SRPMS: | |
| freetype-2.1.4-7.el3.src.rpm | f46c6c022e6fc4a1e0136b3c55991413 |
| IA-32: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-devel-2.1.4-7.el3.i386.rpm | 946408cb6964f9656b206d3ab37f838d |
| x86_64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.x86_64.rpm | 33fa6ef963ba8d0c8acba4c600257db0 |
| freetype-devel-2.1.4-7.el3.x86_64.rpm | 17c24a7872f80f9915b7b80620ab05c0 |
| Red Hat Desktop (v. 4) | |
| SRPMS: | |
| freetype-2.1.9-6.el4.src.rpm | cc07d3dec91d6d29906b94deafad8085 |
| IA-32: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-demos-2.1.9-6.el4.i386.rpm | ea62b92a2837f49512cef4ad6dcb8139 |
| freetype-devel-2.1.9-6.el4.i386.rpm | a89a0b0dcacd5a02da1a3366b9c3113b |
| freetype-utils-2.1.9-6.el4.i386.rpm | a55db7a286f3315bd04ba74fcbd0d7a8 |
| x86_64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.x86_64.rpm | 1c24287ff2c1eafeb328cb7e1d92b53c |
| freetype-demos-2.1.9-6.el4.x86_64.rpm | 2a9e10101ed7e1a1cfdb042730439ea7 |
| freetype-devel-2.1.9-6.el4.x86_64.rpm | bc91c248af40f4819e820dc80855047f |
| freetype-utils-2.1.9-6.el4.x86_64.rpm | 1d4e412ddb3d00673993c00875d91bd4 |
| Red Hat Enterprise Linux (v. 5 server) | |
| SRPMS: | |
| freetype-2.2.1-19.el5.src.rpm | 031c72cd54c06d836989c22df8101f6b |
| IA-32: | |
| freetype-2.2.1-19.el5.i386.rpm | 5b5263da00cae8d7dafaeb012fecb1dc |
| freetype-demos-2.2.1-19.el5.i386.rpm | b007f01db911edb1370e188599c94cac |
| freetype-devel-2.2.1-19.el5.i386.rpm | e95ec87819d744e7d35867dfd171a9d6 |
| IA-64: | |
| freetype-2.2.1-19.el5.i386.rpm | 5b5263da00cae8d7dafaeb012fecb1dc |
| freetype-2.2.1-19.el5.ia64.rpm | 2e7cbe5157ada37746d7f1a672c2115e |
| freetype-demos-2.2.1-19.el5.ia64.rpm | 38e627331258ec8d998b799354b4529c |
| freetype-devel-2.2.1-19.el5.ia64.rpm | 508ae433ba1e7580bcba1f485b69bb7a |
| PPC: | |
| freetype-2.2.1-19.el5.ppc.rpm | 9c5cf83224501e6a96763ed15e4a32c1 |
| freetype-2.2.1-19.el5.ppc64.rpm | 7488f858b195744e2930f6cb06c302a2 |
| freetype-demos-2.2.1-19.el5.ppc.rpm | cbfea004417e4fdf77721bef7784916e |
| freetype-devel-2.2.1-19.el5.ppc.rpm | 9a7c7bec5b237b30d6e43f99ab43f7bc |
| freetype-devel-2.2.1-19.el5.ppc64.rpm | bc6a168110a7f5ccd40cc3eaf2f64b09 |
| s390x: | |
| freetype-2.2.1-19.el5.s390.rpm | 25ce8e64f5a4283cb9f8f1798e3a3790 |
| freetype-2.2.1-19.el5.s390x.rpm | 7400114fecbfd8a28b7ce462cdf16c87 |
| freetype-demos-2.2.1-19.el5.s390x.rpm | 985d3e3c50fea637517d9a4ac59603c8 |
| freetype-devel-2.2.1-19.el5.s390.rpm | 2fd786b35e85cdecefc16b7c864f72e9 |
| freetype-devel-2.2.1-19.el5.s390x.rpm | 538260b62dea2ea4b9255e3bd2d15651 |
| x86_64: | |
| freetype-2.2.1-19.el5.i386.rpm | 5b5263da00cae8d7dafaeb012fecb1dc |
| freetype-2.2.1-19.el5.x86_64.rpm | 6acc2cb603fcb5394ca64ec74eb65526 |
| freetype-demos-2.2.1-19.el5.x86_64.rpm | 3671cca85c94063b11a4b5e0ba43023b |
| freetype-devel-2.2.1-19.el5.i386.rpm | e95ec87819d744e7d35867dfd171a9d6 |
| freetype-devel-2.2.1-19.el5.x86_64.rpm | 8e687e3c53856447cdea76740c7d9485 |
| Red Hat Enterprise Linux AS (v. 2.1) | |
| SRPMS: | |
| freetype-2.0.3-10.el21.src.rpm | 501698e8ad15ea9b3ef4dab253f5cdb3 |
| IA-32: | |
| freetype-2.0.3-10.el21.i386.rpm | ee3d2a6ab6aa481120d9e3b39148d343 |
| freetype-devel-2.0.3-10.el21.i386.rpm | 05b23c9b73f442ce72291f7b25f3918d |
| freetype-utils-2.0.3-10.el21.i386.rpm | a331fa2a67be7cbee528220c4f2b9abf |
| IA-64: | |
| freetype-2.0.3-10.el21.ia64.rpm | cb215115971c5e16883aa3ce6b5c1449 |
| freetype-devel-2.0.3-10.el21.ia64.rpm | b35f975262dc1d3167a6b0f8185473c1 |
| freetype-utils-2.0.3-10.el21.ia64.rpm | 5c1d37907c96922abdcf160b411ad2b4 |
| Red Hat Enterprise Linux AS (v. 3) | |
| SRPMS: | |
| freetype-2.1.4-7.el3.src.rpm | f46c6c022e6fc4a1e0136b3c55991413 |
| IA-32: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-devel-2.1.4-7.el3.i386.rpm | 946408cb6964f9656b206d3ab37f838d |
| IA-64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.ia64.rpm | 2d6407a4db4e9fcc7493067b5347d578 |
| freetype-devel-2.1.4-7.el3.ia64.rpm | 78e009eabfecfcb0b79a1a2f11c5ff02 |
| PPC: | |
| freetype-2.1.4-7.el3.ppc.rpm | e3a6c54f6b2d8214710576e8521cb0ea |
| freetype-2.1.4-7.el3.ppc64.rpm | 1d26dd0111da381d2e13acbdf18d5304 |
| freetype-devel-2.1.4-7.el3.ppc.rpm | a4966b14509bb6ac863d9dbcbd8fcdcf |
| s390: | |
| freetype-2.1.4-7.el3.s390.rpm | 1160f4f5bdbf2448f527c1ccb2ddfda0 |
| freetype-devel-2.1.4-7.el3.s390.rpm | ad799704c8be5b6380918edf767c1676 |
| s390x: | |
| freetype-2.1.4-7.el3.s390.rpm | 1160f4f5bdbf2448f527c1ccb2ddfda0 |
| freetype-2.1.4-7.el3.s390x.rpm | ca7c5c77fd564cd4ceb7f35b7442df6f |
| freetype-devel-2.1.4-7.el3.s390x.rpm | 84de1b6d54d2ce345fbed77c56a028af |
| x86_64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.x86_64.rpm | 33fa6ef963ba8d0c8acba4c600257db0 |
| freetype-devel-2.1.4-7.el3.x86_64.rpm | 17c24a7872f80f9915b7b80620ab05c0 |
| Red Hat Enterprise Linux AS (v. 4) | |
| SRPMS: | |
| freetype-2.1.9-6.el4.src.rpm | cc07d3dec91d6d29906b94deafad8085 |
| IA-32: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-demos-2.1.9-6.el4.i386.rpm | ea62b92a2837f49512cef4ad6dcb8139 |
| freetype-devel-2.1.9-6.el4.i386.rpm | a89a0b0dcacd5a02da1a3366b9c3113b |
| freetype-utils-2.1.9-6.el4.i386.rpm | a55db7a286f3315bd04ba74fcbd0d7a8 |
| IA-64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.ia64.rpm | 1cb0b6eea0d377bf8f8fa8c822161659 |
| freetype-demos-2.1.9-6.el4.ia64.rpm | 520596cb2ee46300dae6383e95173aea |
| freetype-devel-2.1.9-6.el4.ia64.rpm | fa653236aef06f5edf989cddf58c071d |
| freetype-utils-2.1.9-6.el4.ia64.rpm | 16990989b33a28ccf94ad04a68921add |
| PPC: | |
| freetype-2.1.9-6.el4.ppc.rpm | f64c21e12468b65aaed0430a9b180be4 |
| freetype-2.1.9-6.el4.ppc64.rpm | 8c569f11e0d2b3bf3622f49e7f582a25 |
| freetype-demos-2.1.9-6.el4.ppc.rpm | 40335b82d81acbbc00fb0eaa3a5c6f20 |
| freetype-devel-2.1.9-6.el4.ppc.rpm | 3216559ec3567c2accbd6b425dbe5c3d |
| freetype-utils-2.1.9-6.el4.ppc.rpm | 05b75b53da278d864a0cdde7ce8779c6 |
| s390: | |
| freetype-2.1.9-6.el4.s390.rpm | 835b50243fb18a2559a9d59ab5d77ef7 |
| freetype-demos-2.1.9-6.el4.s390.rpm | 43bcd2823725e740f6a12e0e684319cf |
| freetype-devel-2.1.9-6.el4.s390.rpm | bae23f36966c9427e5cf77addf7c6d9a |
| freetype-utils-2.1.9-6.el4.s390.rpm | a3b90ed59e2f4b74c946b4ba86a31c3e |
| s390x: | |
| freetype-2.1.9-6.el4.s390.rpm | 835b50243fb18a2559a9d59ab5d77ef7 |
| freetype-2.1.9-6.el4.s390x.rpm | d971099e9396d2184730c77786dc5986 |
| freetype-demos-2.1.9-6.el4.s390x.rpm | 90b5cb6031a0ab78edea9d8a9ce819e2 |
| freetype-devel-2.1.9-6.el4.s390x.rpm | 605e9a65c46abaa88dec22a83087ce01 |
| freetype-utils-2.1.9-6.el4.s390x.rpm | c306d9e11b25d1ef2f81cc59c0b6ed87 |
| x86_64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.x86_64.rpm | 1c24287ff2c1eafeb328cb7e1d92b53c |
| freetype-demos-2.1.9-6.el4.x86_64.rpm | 2a9e10101ed7e1a1cfdb042730439ea7 |
| freetype-devel-2.1.9-6.el4.x86_64.rpm | bc91c248af40f4819e820dc80855047f |
| freetype-utils-2.1.9-6.el4.x86_64.rpm | 1d4e412ddb3d00673993c00875d91bd4 |
| Red Hat Enterprise Linux Desktop (v. 5 client) | |
| SRPMS: | |
| freetype-2.2.1-19.el5.src.rpm | 031c72cd54c06d836989c22df8101f6b |
| IA-32: | |
| freetype-2.2.1-19.el5.i386.rpm | 5b5263da00cae8d7dafaeb012fecb1dc |
| x86_64: | |
| freetype-2.2.1-19.el5.i386.rpm | 5b5263da00cae8d7dafaeb012fecb1dc |
| freetype-2.2.1-19.el5.x86_64.rpm | 6acc2cb603fcb5394ca64ec74eb65526 |
| Red Hat Enterprise Linux ES (v. 2.1) | |
| SRPMS: | |
| freetype-2.0.3-10.el21.src.rpm | 501698e8ad15ea9b3ef4dab253f5cdb3 |
| IA-32: | |
| freetype-2.0.3-10.el21.i386.rpm | ee3d2a6ab6aa481120d9e3b39148d343 |
| freetype-devel-2.0.3-10.el21.i386.rpm | 05b23c9b73f442ce72291f7b25f3918d |
| freetype-utils-2.0.3-10.el21.i386.rpm | a331fa2a67be7cbee528220c4f2b9abf |
| Red Hat Enterprise Linux ES (v. 3) | |
| SRPMS: | |
| freetype-2.1.4-7.el3.src.rpm | f46c6c022e6fc4a1e0136b3c55991413 |
| IA-32: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-devel-2.1.4-7.el3.i386.rpm | 946408cb6964f9656b206d3ab37f838d |
| IA-64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.ia64.rpm | 2d6407a4db4e9fcc7493067b5347d578 |
| freetype-devel-2.1.4-7.el3.ia64.rpm | 78e009eabfecfcb0b79a1a2f11c5ff02 |
| x86_64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.x86_64.rpm | 33fa6ef963ba8d0c8acba4c600257db0 |
| freetype-devel-2.1.4-7.el3.x86_64.rpm | 17c24a7872f80f9915b7b80620ab05c0 |
| Red Hat Enterprise Linux ES (v. 4) | |
| SRPMS: | |
| freetype-2.1.9-6.el4.src.rpm | cc07d3dec91d6d29906b94deafad8085 |
| IA-32: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-demos-2.1.9-6.el4.i386.rpm | ea62b92a2837f49512cef4ad6dcb8139 |
| freetype-devel-2.1.9-6.el4.i386.rpm | a89a0b0dcacd5a02da1a3366b9c3113b |
| freetype-utils-2.1.9-6.el4.i386.rpm | a55db7a286f3315bd04ba74fcbd0d7a8 |
| IA-64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.ia64.rpm | 1cb0b6eea0d377bf8f8fa8c822161659 |
| freetype-demos-2.1.9-6.el4.ia64.rpm | 520596cb2ee46300dae6383e95173aea |
| freetype-devel-2.1.9-6.el4.ia64.rpm | fa653236aef06f5edf989cddf58c071d |
| freetype-utils-2.1.9-6.el4.ia64.rpm | 16990989b33a28ccf94ad04a68921add |
| x86_64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.x86_64.rpm | 1c24287ff2c1eafeb328cb7e1d92b53c |
| freetype-demos-2.1.9-6.el4.x86_64.rpm | 2a9e10101ed7e1a1cfdb042730439ea7 |
| freetype-devel-2.1.9-6.el4.x86_64.rpm | bc91c248af40f4819e820dc80855047f |
| freetype-utils-2.1.9-6.el4.x86_64.rpm | 1d4e412ddb3d00673993c00875d91bd4 |
| Red Hat Enterprise Linux WS (v. 2.1) | |
| SRPMS: | |
| freetype-2.0.3-10.el21.src.rpm | 501698e8ad15ea9b3ef4dab253f5cdb3 |
| IA-32: | |
| freetype-2.0.3-10.el21.i386.rpm | ee3d2a6ab6aa481120d9e3b39148d343 |
| freetype-devel-2.0.3-10.el21.i386.rpm | 05b23c9b73f442ce72291f7b25f3918d |
| freetype-utils-2.0.3-10.el21.i386.rpm | a331fa2a67be7cbee528220c4f2b9abf |
| Red Hat Enterprise Linux WS (v. 3) | |
| SRPMS: | |
| freetype-2.1.4-7.el3.src.rpm | f46c6c022e6fc4a1e0136b3c55991413 |
| IA-32: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-devel-2.1.4-7.el3.i386.rpm | 946408cb6964f9656b206d3ab37f838d |
| IA-64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.ia64.rpm | 2d6407a4db4e9fcc7493067b5347d578 |
| freetype-devel-2.1.4-7.el3.ia64.rpm | 78e009eabfecfcb0b79a1a2f11c5ff02 |
| x86_64: | |
| freetype-2.1.4-7.el3.i386.rpm | 439b77b4fcbd42dc5e250786a76e2edf |
| freetype-2.1.4-7.el3.x86_64.rpm | 33fa6ef963ba8d0c8acba4c600257db0 |
| freetype-devel-2.1.4-7.el3.x86_64.rpm | 17c24a7872f80f9915b7b80620ab05c0 |
| Red Hat Enterprise Linux WS (v. 4) | |
| SRPMS: | |
| freetype-2.1.9-6.el4.src.rpm | cc07d3dec91d6d29906b94deafad8085 |
| IA-32: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-demos-2.1.9-6.el4.i386.rpm | ea62b92a2837f49512cef4ad6dcb8139 |
| freetype-devel-2.1.9-6.el4.i386.rpm | a89a0b0dcacd5a02da1a3366b9c3113b |
| freetype-utils-2.1.9-6.el4.i386.rpm | a55db7a286f3315bd04ba74fcbd0d7a8 |
| IA-64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.ia64.rpm | 1cb0b6eea0d377bf8f8fa8c822161659 |
| freetype-demos-2.1.9-6.el4.ia64.rpm | 520596cb2ee46300dae6383e95173aea |
| freetype-devel-2.1.9-6.el4.ia64.rpm | fa653236aef06f5edf989cddf58c071d |
| freetype-utils-2.1.9-6.el4.ia64.rpm | 16990989b33a28ccf94ad04a68921add |
| x86_64: | |
| freetype-2.1.9-6.el4.i386.rpm | 67aa1d41842ed78af373dec16132ad93 |
| freetype-2.1.9-6.el4.x86_64.rpm | 1c24287ff2c1eafeb328cb7e1d92b53c |
| freetype-demos-2.1.9-6.el4.x86_64.rpm | 2a9e10101ed7e1a1cfdb042730439ea7 |
| freetype-devel-2.1.9-6.el4.x86_64.rpm | bc91c248af40f4819e820dc80855047f |
| freetype-utils-2.1.9-6.el4.x86_64.rpm | 1d4e412ddb3d00673993c00875d91bd4 |
| Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor | |
| SRPMS: | |
| freetype-2.0.3-10.el21.src.rpm | 501698e8ad15ea9b3ef4dab253f5cdb3 |
| IA-64: | |
| freetype-2.0.3-10.el21.ia64.rpm | cb215115971c5e16883aa3ce6b5c1449 |
| freetype-devel-2.0.3-10.el21.ia64.rpm | b35f975262dc1d3167a6b0f8185473c1 |
| freetype-utils-2.0.3-10.el21.ia64.rpm | 5c1d37907c96922abdcf160b411ad2b4 |
| (The unlinked packages above are only available from the Red Hat Network) | |
バグフィックス (詳細は、bugzilla/バグジラ[英語]を御覧ください。)
240200 - CVE-2007-2754 freetype integer overflow
参照
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2754
http://www.redhat.com/security/updates/classification/#moderate
http://www.redhat.com/security/updates/classification/#moderate
ここに在るパッケージはセキュリティの為、Red Hat, Inc. によって、GPG認証されています。
認証キー及び詳細は以下を御覧下さい。
https://www.redhat.com/security/team/key/#package
The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/
Copyright © 2008 Red Hat, Inc. All rights reserved.
プライバシー ステートメント :
リーガル ステートメント/利用条件 :
特許に関する見解と約束 :
各種お問い合わせ