GSA-6168-1 freetype - security update
Gnoppix Security discovered multiple vulnerabilities in freetype, a TrueType font library. Integer overflows and invalid memory reads (CVE-2024-51039, CVE-2024-51040, CVE-2024-51041, CVE-2024-51042) could cause denial of service or arbitrary code execution via crafted fonts.
For Gnoppix 23/25: freetype 2.12.1+dfsg-1+deb12u3
For Gnoppix 25: freetype 2.13.2+dfsg-1+deb13u1
Upgrade packages immediately. After update, run tasksel/update-grub if needed. - Please update your systems.