1
PublicDateAtUSN: 2018-02-13
2
Candidate: CVE-2018-6942
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6942
6
https://usn.ubuntu.com/usn/usn-3572-1
8
An issue was discovered in FreeType 2 through 2.9. A NULL pointer
9
dereference in the Ins_GETVARIATION() function within ttinterp.c could lead
10
to DoS via a crafted font file.
13
leosilva> for precise/esm, trusty and xenial code affected is not present.
15
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5736
22
upstream: https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=29c759284e305ec428703c9a5831d0b1fc3497ef
23
upstream_freetype: needs-triage
24
precise/esm_freetype: not-affected
25
trusty_freetype: not-affected
26
xenial_freetype: not-affected
27
artful_freetype: released (2.8-0.2ubuntu2.1)
28
devel_freetype: released (2.8.1-0.1ubuntu3)