Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-2499
Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType prior to 2.4.0 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LaserWriter PS font file with an embedded PFB fragmen...
Freetype Freetype
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
Apple Mac Os X
Debian Debian Linux 5.0
5.1
CVSSv2
CVE-2010-2520
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType prior to 2.4.0, when TrueType bytecode support is enabled, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font fi...
Freetype Freetype
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
Apple Mac Os X
Debian Debian Linux 5.0
9.3
CVSSv2
CVE-2010-1797
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType prior to 2.4.2, as used in Apple iOS prior to 4.0.2 on the iPhone and iPod touch and prior to 3.2.2 on the iPad, allow remote...
Apple Iphone Os 2.0.2
Apple Iphone Os 3.0
Apple Iphone Os 4.0
Apple Iphone Os 3.2
Apple Iphone Os 3.1.3
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.2
Apple Iphone Os 2.2
Apple Iphone Os 4.0.1
Apple Iphone Os 1.1.4
Apple Iphone Os 1.1.1
Apple Iphone Os 1.0.1
Apple Iphone Os 2.0.0
Apple Iphone Os 3.1.2
Apple Iphone Os 3.0.1
Apple Iphone Os 1.1.3
Apple Iphone Os 2.1
Apple Iphone Os 3.2.1
Apple Iphone Os 3.1
Apple Iphone Os 2.0.1
Apple Iphone Os 1.1.5
Apple Iphone Os 1.1.0
2 EDB exploits
1 Github repository
7.5
CVSSv2
CVE-2009-0946
Multiple integer overflows in FreeType 2.3.9 and previous versions allow remote malicious users to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.
Freetype Freetype
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Debian Debian Linux 6.0
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Opensuse Opensuse 11.1
Opensuse Opensuse 11.0
Opensuse Opensuse 10.3
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 10
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.4.11
Apple Mac Os X Server 10.5.8
Apple Safari 4.0
Apple Mac Os X 10.4.11
Apple Iphone Os
Apple Mac Os X Server
Apple Mac Os X
7.5
CVSSv2
CVE-2008-1806
Integer overflow in FreeType2 prior to 2.3.6 allows context-dependent malicious users to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary (PFB) file, which triggers a heap-based buffer overflow.
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.3.3
7.5
CVSSv2
CVE-2008-1807
FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary (PFB) file, which triggers a free of arbitrary memory locations, leading to memory corruption.
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.3.3
7.5
CVSSv2
CVE-2008-1808
Multiple off-by-one errors in FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer ...
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.3.3
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
Freetype Freetype 2.1.7
Freetype Freetype 2.2.0
7.5
CVSSv2
CVE-2007-3506
The ft_bitmap_assure_buffer function in src/base/ftbimap.c in FreeType 2.3.3 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via unspecified vectors involving bitmap fonts, related to a "memory buffer overwrite bug.&q...
Freetype Freetype
7.5
CVSSv2
CVE-2007-3408
Multiple unspecified vulnerabilities in Dia prior to 0.96.1-6 have unspecified attack vectors and impact, probably involving the use of vulnerable FreeType libraries that contain CVE-2007-2754 and/or CVE-2007-1351.
Dia Dia
6.8
CVSSv2
CVE-2007-2754
Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and previous versions might allow remote malicious users to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.
Freetype Freetype
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »