FreeType2: Multiple Vulnerabilities

Users of FreeType2 please be advised of Multiple vulnerabilities that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (

MDVSA-2010:235: [MDVSA-2010:235] freetype2 Multiple Vulnerabilities
Problem Description:

Multiple vulnerabilities were discovered and corrected in freetype2:

An error exists in the “ft_var_readpackedpoints()” function in

src/truetype/ttgxvar.c when processing TrueType GX fonts and can

be exploited to cause a heap-based buffer overflow via a specially

crafted font (CVE-2010-3855).