Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype 2.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2241
The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType prior to 2.5.3 do not properly check if a subroutine exists, which allows remote malicious users to cause a denial of service (assertion failure), as demonstrated by a crafte...
Freetype Freetype
Freetype Freetype 2.5.1
Freetype Freetype 2.5
Canonical Ubuntu Linux 13.10
NA
CVE-2014-2240
Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType prior to 2.5.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.
Freetype Freetype
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.4.11
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.5.1
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.4.12
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.10
Freetype Freetype 2.5
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
NA
CVE-2006-1861
Multiple integer overflows in FreeType prior to 2.2 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a cr...
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.1.5
Freetype Freetype 2.1.8
Freetype Freetype 2.1.3
Freetype Freetype 2.1.6
Freetype Freetype 2.0.9
Freetype Freetype 2.1.7
Freetype Freetype 2.1.4
NA
CVE-2006-0747
Integer underflow in Freetype prior to 2.2 allows remote malicious users to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values.
Freetype Freetype
1 EDB exploit
NA
CVE-2006-2661
ftutil.c in Freetype prior to 2.2 allows remote malicious users to cause a denial of service (crash) via a crafted font file that triggers a null dereference.
Freetype Freetype
Debian Debian Linux 3.1
Debian Debian Linux 3.0
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 5.10
1 EDB exploit
NA
CVE-2011-2895
The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont prior to 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD prior to 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x prior to 5.0.3 and 5.1.x prior to 5.1.1, FreeTyp...
Openbsd Openbsd 2.8
Freetype Freetype 2.1.9
Netbsd Netbsd
X Libxfont 1.2.1
X Libxfont 1.2.7
X Libxfont 1.2.6
Openbsd Openbsd 3.1
X Libxfont 1.3.3
Openbsd Openbsd 3.3
Openbsd Openbsd 2.9
X Libxfont
X Libxfont 1.3.2
X Libxfont 1.3.4
Openbsd Openbsd 2.1
X Libxfont 1.3.1
Freebsd Freebsd
Openbsd Openbsd 2.2
X Libxfont 1.4.0
Openbsd Openbsd 2.0
Openbsd Openbsd 2.7
X Libxfont 1.2.4
X Libxfont 1.2.9
NA
CVE-2006-2493
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-1861. Reason: This candidate is a duplicate of CVE-2006-1861. Notes: All CVE users should reference CVE-2006-1861 instead of this candidate. All references and descriptions in this candidate have been removed...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started