Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype 2.4.0 vulnerabilities and exploits
(subscribe to this query)
613
VMScore
CVE-2010-2497
Integer underflow in glyph handling in FreeType prior to 2.4.0 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
Freetype Freetype
Apple Mac Os X
Debian Debian Linux 5.0
613
VMScore
CVE-2010-2498
The psh_glyph_find_strong_points function in pshinter/pshalgo.c in FreeType prior to 2.4.0 does not properly implement hinting masks, which allows remote malicious users to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code...
Freetype Freetype
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Apple Mac Os X
Debian Debian Linux 5.0
613
VMScore
CVE-2010-2499
Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType prior to 2.4.0 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LaserWriter PS font file with an embedded PFB fragmen...
Freetype Freetype
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Apple Mac Os X
Debian Debian Linux 5.0
613
VMScore
CVE-2010-2500
Integer overflow in the gray_render_span function in smooth/ftgrays.c in FreeType prior to 2.4.0 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
Freetype Freetype
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
Apple Mac Os X
Debian Debian Linux 5.0
613
VMScore
CVE-2010-2519
Heap-based buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType prior to 2.4.0 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted length value in a POST fragment header in ...
Freetype Freetype
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
Apple Mac Os X
Debian Debian Linux 5.0
613
VMScore
CVE-2010-2527
Multiple buffer overflows in demo programs in FreeType prior to 2.4.0 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
Freetype Freetype
Debian Debian Linux 5.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
605
VMScore
CVE-2010-3814
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, a...
Freetype Freetype 2.1.8
Freetype Freetype 2.1.3
Freetype Freetype 2.4.1
Freetype Freetype 2.4.2
Freetype Freetype 2.3.12
Freetype Freetype 2.3.11
Freetype Freetype 2.1.6
Freetype Freetype 2.3.9
Freetype Freetype 2.2.1
Freetype Freetype 2.0.6
Freetype Freetype 2.3.2
Freetype Freetype 2.4.0
Freetype Freetype 1.3.1
Freetype Freetype
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.1.7
Freetype Freetype 2.1.4
Freetype Freetype 2.2.10
Freetype Freetype 2.3.6
Freetype Freetype 2.3.5
Freetype Freetype 2.3.1
605
VMScore
CVE-2010-3855
Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.4.1
Freetype Freetype 2.0.9
462
VMScore
CVE-2010-2520
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType prior to 2.4.0, when TrueType bytecode support is enabled, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font fi...
Freetype Freetype
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Apple Mac Os X
Debian Debian Linux 5.0
445
VMScore
CVE-2010-3054
Unspecified vulnerability in FreeType 2.3.9, and other versions prior to 2.4.2, allows remote malicious users to cause a denial of service via vectors involving nested Standard Encoding Accented Character (aka seac) calls, related to psaux.h, cffgload.c, cffgload.h, and t1decode....
Freetype Freetype 2.3.9
Freetype Freetype 2.3.10
Freetype Freetype 2.4.0
Freetype Freetype 2.4.1
Freetype Freetype 2.3.11
Freetype Freetype 2.3.12
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »