Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype 2.1.7 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2008-1808
Multiple off-by-one errors in FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer ...
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.3.3
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
Freetype Freetype 2.1.7
Freetype Freetype 2.2.0
668
VMScore
CVE-2006-3467
Integer overflow in FreeType prior to 2.2 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a partial fix of CVE-2006-1861.
Freetype Freetype
668
VMScore
CVE-2006-1861
Multiple integer overflows in FreeType prior to 2.2 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a cr...
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.1.5
Freetype Freetype 2.1.8
Freetype Freetype 2.1.3
Freetype Freetype 2.1.6
Freetype Freetype 2.0.9
Freetype Freetype 2.1.7
Freetype Freetype 2.1.4
605
VMScore
CVE-2010-3814
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, a...
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.4.1
Freetype Freetype 2.0.9
605
VMScore
CVE-2010-3855
Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.4.1
Freetype Freetype 2.0.9
605
VMScore
CVE-2007-2754
Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and previous versions might allow remote malicious users to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.
Freetype Freetype
505
VMScore
CVE-2006-2661
ftutil.c in Freetype prior to 2.2 allows remote malicious users to cause a denial of service (crash) via a crafted font file that triggers a null dereference.
Freetype Freetype
Debian Debian Linux 3.1
Debian Debian Linux 3.0
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 5.10
1 EDB exploit
505
VMScore
CVE-2006-0747
Integer underflow in Freetype prior to 2.2 allows remote malicious users to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values.
Freetype Freetype
1 EDB exploit
383
VMScore
CVE-2012-5668
FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
383
VMScore
CVE-2012-5669
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »