ASA-201805-3 log generated external raw

[ASA-201805-3] freetype2: denial of service
Arch Linux Security Advisory ASA-201805-3 ========================================= Severity: Low Date : 2018-05-09 CVE-ID : CVE-2018-6942 Package : freetype2 Type : denial of service Remote : Yes Link : Summary ======= The package freetype2 before version 2.9.1-1 is vulnerable to denial of service. Resolution ========== Upgrade to 2.9.1-1. # pacman -Syu "freetype2>=2.9.1-1" The problem has been fixed upstream in version 2.9.1. Workaround ========== None. Description =========== An issue was discovered in FreeType 2 before 2.9.1. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to denial of service via a crafted font file. Impact ====== A remote attacker is able to cause a denial of service via a specially crafted file. References ==========