Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype 2.3.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1806
Integer overflow in FreeType2 prior to 2.3.6 allows context-dependent malicious users to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary (PFB) file, which triggers a heap-based buffer overflow.
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.3.3
NA
CVE-2008-1807
FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary (PFB) file, which triggers a free of arbitrary memory locations, leading to memory corruption.
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.3.3
NA
CVE-2008-1808
Multiple off-by-one errors in FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer ...
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.3.3
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
Freetype Freetype 2.1.7
Freetype Freetype 2.2.0
NA
CVE-2010-3311
Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType prior to 2.4 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a ...
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype 2.0.9
Freetype Freetype 2.3.7
Freetype Freetype 2.0.6
Freetype Freetype 2.3.8
NA
CVE-2010-3855
Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.4.1
Freetype Freetype 2.0.9
NA
CVE-2010-3814
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, a...
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.4.1
Freetype Freetype 2.0.9
NA
CVE-2010-3053
bdf/bdflib.c in FreeType prior to 2.4.2 allows remote malicious users to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string.
Freetype Freetype 2.4.0
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.0.9
Freetype Freetype 2.3.7
Freetype Freetype 2.0.6
NA
CVE-2012-5670
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
NA
CVE-2012-5668
FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
NA
CVE-2012-5669
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »