{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2261?format=json","vulnerability_id":"VCID-jqjv-gjbe-dbfg","summary":"Mateusz Jurczyk of the Google Security Team used the Address\nSanitizer tool to discover a series of memory safety bugs in the FreeType\nlibrary, some of which could cause memory corruption and exploitable crashes\nwith certain fonts and font parsing. Firefox Mobile has been upgraded to\nFreeType version 2.4.9 which addresses these issues. Desktop Firefox does not\nuse Freetype for fonts and was not affected.\nOn Linux systems, Firefox will use the installed system library for FreeType. Linux users should make sure they are current on system security updates.","aliases":[{"alias":"CVE-2012-1126"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4375?format=json","purl":"pkg:deb/debian/freetype@2.4.9-1.1%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-keyh-yygz-y7ep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.4.9-1.1%252Bdeb7u3"},{"url":"http://public2.vulnerablecode.io/api/packages/1064?format=json","purl":"pkg:mozilla/Firefox%20Mobile@10.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520Mobile@10.0.4"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4365?format=json","purl":"pkg:deb/debian/freetype@1.0.0.1998-03-22-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@1.0.0.1998-03-22-1"},{"url":"http://public2.vulnerablecode.io/api/packages/4366?format=json","purl":"pkg:deb/debian/freetype@1.2-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@1.2-3"},{"url":"http://public2.vulnerablecode.io/api/packages/4367?format=json","purl":"pkg:deb/debian/freetype@1.3.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@1.3.1-1"},{"url":"http://public2.vulnerablecode.io/api/packages/4368?format=json","purl":"pkg:deb/debian/freetype@2.0.9-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.0.9-1"},{"url":"http://public2.vulnerablecode.io/api/packages/4369?format=json","purl":"pkg:deb/debian/freetype@2.1.7-8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.1.7-8"},{"url":"http://public2.vulnerablecode.io/api/packages/4370?format=json","purl":"pkg:deb/debian/freetype@2.2.1-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.2.1-5"},{"url":"http://public2.vulnerablecode.io/api/packages/4371?format=json","purl":"pkg:deb/debian/freetype@2.2.1-5%2Betch4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.2.1-5%252Betch4"},{"url":"http://public2.vulnerablecode.io/api/packages/4372?format=json","purl":"pkg:deb/debian/freetype@2.3.7-2%2Blenny8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.3.7-2%252Blenny8"},{"url":"http://public2.vulnerablecode.io/api/packages/4373?format=json","purl":"pkg:deb/debian/freetype@2.4.2-2.1%2Bsqueeze4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.4.2-2.1%252Bsqueeze4"},{"url":"http://public2.vulnerablecode.io/api/packages/4374?format=json","purl":"pkg:deb/debian/freetype@2.4.2-2.1%2Bsqueeze6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2yvb-7w2n-ybhg"},{"vulnerability":"VCID-31q8-w6bh-zuey"},{"vulnerability":"VCID-6bcv-2cx6-77es"},{"vulnerability":"VCID-6jeb-n9un-3qhd"},{"vulnerability":"VCID-79xr-2yux-37ea"},{"vulnerability":"VCID-8sk7-1vxp-9bgd"},{"vulnerability":"VCID-8zjm-pmh1-p7a2"},{"vulnerability":"VCID-aswe-3g48-wfgm"},{"vulnerability":"VCID-e4yc-a8j8-mqfq"},{"vulnerability":"VCID-fe3g-ww6q-hqa8"},{"vulnerability":"VCID-g8bk-9bsd-p7bk"},{"vulnerability":"VCID-jqjv-gjbe-dbfg"},{"vulnerability":"VCID-kemx-zuam-uqab"},{"vulnerability":"VCID-keyh-yygz-y7ep"},{"vulnerability":"VCID-kwd7-sv6y-eyh8"},{"vulnerability":"VCID-psxs-t1t2-bkba"},{"vulnerability":"VCID-r47y-we15-pqg3"},{"vulnerability":"VCID-tvvd-q7nw-eyey"},{"vulnerability":"VCID-vx31-mywv-1fhr"},{"vulnerability":"VCID-xxs6-891m-t3bm"},{"vulnerability":"VCID-z2q3-ejur-8uhb"},{"vulnerability":"VCID-z66j-hvpb-9ydk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.4.2-2.1%252Bsqueeze6"}],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1126","reference_id":"CVE-2012-1126","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1126"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-21","reference_id":"mfsa2012-21","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-21"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jqjv-gjbe-dbfg"}