Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype 2.4.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2010-3054
Unspecified vulnerability in FreeType 2.3.9, and other versions prior to 2.4.2, allows remote malicious users to cause a denial of service via vectors involving nested Standard Encoding Accented Character (aka seac) calls, related to psaux.h, cffgload.c, cffgload.h, and t1decode....
Freetype Freetype 2.3.9
Freetype Freetype 2.3.10
Freetype Freetype 2.4.0
Freetype Freetype 2.4.1
Freetype Freetype 2.3.11
Freetype Freetype 2.3.12
6.8
CVSSv2
CVE-2010-3855
Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.4.1
Freetype Freetype 2.0.9
6.8
CVSSv2
CVE-2010-3814
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, a...
Freetype Freetype 2.1.8
Freetype Freetype 2.1.3
Freetype Freetype 2.4.1
Freetype Freetype 2.4.2
Freetype Freetype 2.3.12
Freetype Freetype 2.3.11
Freetype Freetype 2.1.6
Freetype Freetype 2.3.9
Freetype Freetype 2.2.1
Freetype Freetype 2.0.6
Freetype Freetype 2.3.2
Freetype Freetype 2.4.0
Freetype Freetype 1.3.1
Freetype Freetype
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.1.7
Freetype Freetype 2.1.4
Freetype Freetype 2.2.10
Freetype Freetype 2.3.6
Freetype Freetype 2.3.5
Freetype Freetype 2.3.1
4.3
CVSSv2
CVE-2012-5668
FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.
Freetype Freetype 2.4.3
Freetype Freetype 2.4.0
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.3.9
Freetype Freetype 2.3.11
Freetype Freetype 2.3.10
Freetype Freetype 2.1.6
Freetype Freetype 2.1.8
Freetype Freetype 2.0.3
Freetype Freetype 2.0.4
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
Freetype Freetype 2.4.9
Freetype Freetype 2.4.7
Freetype Freetype 2.4.1
Freetype Freetype 2.3.6
Freetype Freetype 2.3.2
Freetype Freetype 2.2.0
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.1.10
4.3
CVSSv2
CVE-2012-5669
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.
Freetype Freetype 2.4.0
Freetype Freetype 2.4.4
Freetype Freetype 2.3.9
Freetype Freetype 2.3.8
Freetype Freetype 2.3.10
Freetype Freetype 2.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.0.4
Freetype Freetype 2.0.5
Freetype Freetype 2.0.6
Freetype Freetype 1.3.1
Freetype Freetype 2.4.9
Freetype Freetype
Freetype Freetype 2.4.5
Freetype Freetype 2.4.3
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.3.12
Freetype Freetype 2.3.11
Freetype Freetype 2.1.7
Freetype Freetype 2.1.6
Freetype Freetype 2.1
4.3
CVSSv2
CVE-2012-5670
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.
Freetype Freetype 2.4.4
Freetype Freetype 2.4.8
Freetype Freetype 2.3.8
Freetype Freetype 2.3.7
Freetype Freetype 2.3.1
Freetype Freetype 2.3.0
Freetype Freetype 2.1.8
Freetype Freetype 2.1.3
Freetype Freetype 2.0.5
Freetype Freetype 2.0.7
Freetype Freetype 1.3.1
Freetype Freetype 2.4.3
Freetype Freetype 2.4.0
Freetype Freetype 2.3.3
Freetype Freetype 2.3.9
Freetype Freetype 2.3.11
Freetype Freetype 2.3.10
Freetype Freetype 2.1.6
Freetype Freetype 2.0.3
Freetype Freetype 2.0.4
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
7.5
CVSSv2
CVE-2014-2240
Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType prior to 2.5.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.
Freetype Freetype 2.5.1
Freetype Freetype
Freetype Freetype 2.0.6
Freetype Freetype 2.0.7
Freetype Freetype 2.1.5
Freetype Freetype 2.4.12
Freetype Freetype 2.5
Freetype Freetype 2.0.3
Freetype Freetype 2.0.4
Freetype Freetype 2.0.5
Freetype Freetype 2.1.3
Freetype Freetype 2.1.4
Freetype Freetype 2.1.9
Freetype Freetype 2.2.0
Freetype Freetype 2.3.2
Freetype Freetype 2.3.3
Freetype Freetype 2.3.4
Freetype Freetype 2.4.1
Freetype Freetype 2.4.10
Freetype Freetype 2.4.7
Freetype Freetype 2.4.8
Freetype Freetype 2.0.1
9.3
CVSSv2
CVE-2012-1127
FreeType prior to 2.4.9, as used in Mozilla Firefox Mobile prior to 10.0.4 and other products, allows remote malicious users to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via crafted glyph or bitmap data in a B...
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Mozilla Firefox Mobile 4.0
Freetype Freetype 2.3.6
Freetype Freetype
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Mozilla Firefox Mobile 8.0
Mozilla Firefox Mobile 10.0.1
Mozilla Firefox Mobile 7.0
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Mozilla Firefox Mobile 10.0.2
Freetype Freetype 1.3.1
Mozilla Firefox Mobile 6.0.2
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
9.3
CVSSv2
CVE-2012-1132
FreeType prior to 2.4.9, as used in Mozilla Firefox Mobile prior to 10.0.4 and other products, allows remote malicious users to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via crafted dictionary data in a Type 1...
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Mozilla Firefox Mobile 4.0
Freetype Freetype 2.3.6
Freetype Freetype
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Mozilla Firefox Mobile 8.0
Mozilla Firefox Mobile 10.0.1
Mozilla Firefox Mobile 7.0
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Mozilla Firefox Mobile 10.0.2
Freetype Freetype 1.3.1
Mozilla Firefox Mobile 6.0.2
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
9.3
CVSSv2
CVE-2012-1138
FreeType prior to 2.4.9, as used in Mozilla Firefox Mobile prior to 10.0.4 and other products, allows remote malicious users to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via vectors involving the MIRP instruct...
Mozilla Firefox Mobile 10.0.2
Mozilla Firefox Mobile 10.0.1
Mozilla Firefox Mobile 6.0
Mozilla Firefox Mobile 5.0
Freetype Freetype 2.3.9
Freetype Freetype 2.1
Freetype Freetype 2.4.2
Freetype Freetype 2.3.8
Freetype Freetype 2.3.10
Freetype Freetype 2.3.1
Freetype Freetype 2.3.3
Freetype Freetype 2.1.7
Freetype Freetype 2.2.1
Freetype Freetype 2.0.6
Freetype Freetype 2.0.2
Freetype Freetype 2.0.1
Mozilla Firefox Mobile 8.0
Mozilla Firefox Mobile 7.0
Mozilla Firefox Mobile 4.0
Freetype Freetype 2.3.5
Freetype Freetype 2.4.7
Freetype Freetype 2.3.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »