Debian Security Advisory 1390-1 – Hamid Ebadi has discovered a buffer overflow the intT1_Env_GetCompletePath routine in t1lib, a Type 1 font rasterizer library. This flaw could allow an attacker to crash and application using the t1lib shared libraries, and potentially execute arbitrary code within such an application’s security context.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/60268/dsa-1390-1.txt
Source: https://packetstormsecurity.com/files/60268/Debian-Linux-Security-Advisory-1390-1.html