Security update for freetype2
This update of the freetype2 library fixes two security issues.
These security issues were fixed:
- CVE-2014-9745: Infinite loop in parse_encoding in t1load.c (bsc#945849)
- CVE-2014-9747: Use of uninitialized memory in ps_parser_load_field, t42_parse_font_matrix and t1_parse_font_matrix (bsc#947966)
-
Submitted by
Fridrich Strba (fstrba)
Fixed bugs
bnc#945849
VUL-0: CVE-2014-9745: freetype2: Infinite loop in parse_encoding in t1load.c
bnc#947966
VUL-1: CVE-2014-9746,CVE-2014-9747: The parse_encoding function in type1/t1load.c in FreeType before 2.5.3allows remote attackers to ca...
