Mandriva Linux Security Advisory 2009:243-2: freetype2

23

Multiple integer overflows in FreeType 2.3.9 and earlier allow remote
attackers to execute arbitrary code via vectors related to large
values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c,
and (3) cff/cffload.c.

This update corrects the problem.

Update:

Packages for 2008.0 are being provided due to extended support for
Corporate products.