libfreetype CVE FYI

Brian Inglis
Tue Oct 20 14:46:29 GMT 2020

In case you haven't seen it yet, from news feed:

FreeType 2.10.4 Rushed Out As Emergency Security Release

links to:

"FreeType 2.10.4
This is an emergency release, fixing a severe vulnerability in embedded PNG
bitmap handling (see here for more).

All users should update immediately."

links to:

Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada

This email may be disturbing to some readers as it contains
too much technical detail. Reader discretion is advised.
[Data in binary units and prefixes, physical quantities in SI.]

More information about the Cygwin-apps mailing list