Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2008-1806
Integer overflow in FreeType2 prior to 2.3.6 allows context-dependent malicious users to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary (PFB) file, which triggers a heap-based buffer overflow.
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.3.3
668
VMScore
CVE-2008-1807
FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary (PFB) file, which triggers a free of arbitrary memory locations, leading to memory corruption.
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 1.3.1
Freetype Freetype 2.3.3
605
VMScore
CVE-2014-2241
The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType prior to 2.5.3 do not properly check if a subroutine exists, which allows remote malicious users to cause a denial of service (assertion failure), as demonstrated by a crafte...
Freetype Freetype
Freetype Freetype 2.5.1
Freetype Freetype 2.5
Canonical Ubuntu Linux 13.10
828
VMScore
CVE-2011-0226
Integer signedness error in psaux/t1decode.c in FreeType prior to 2.4.6, as used in CoreGraphics in Apple iOS prior to 4.2.9 and 4.3.x prior to 4.3.4 and other products, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and ap...
Freetype Freetype
Freetype Freetype 2.2.1
Freetype Freetype 2.2.10
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype 2.3.2
Freetype Freetype 2.3.3
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.3.6
Freetype Freetype 2.3.7
Freetype Freetype 2.3.8
Freetype Freetype 2.3.9
Freetype Freetype 2.3.10
Freetype Freetype 2.3.11
Freetype Freetype 2.3.12
Freetype Freetype 2.4.0
Freetype Freetype 2.4.1
Freetype Freetype 2.4.2
Freetype Freetype 2.4.3
Freetype Freetype 2.4.4
Apple Iphone Os
668
VMScore
CVE-2017-7857
FreeType 2 prior to 2017-03-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the TT_Get_MM_Var function in truetype/ttgxvar.c and the sfnt_init_face function in sfnt/sfobjs.c.
Freetype Freetype
668
VMScore
CVE-2017-7858
FreeType 2 prior to 2017-03-07 has an out-of-bounds write related to the TT_Get_MM_Var function in truetype/ttgxvar.c and the sfnt_init_face function in sfnt/sfobjs.c.
Freetype Freetype
668
VMScore
CVE-2015-9290
In FreeType prior to 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.
Freetype Freetype
605
VMScore
CVE-2007-2754
Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and previous versions might allow remote malicious users to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.
Freetype Freetype
505
VMScore
CVE-2006-0747
Integer underflow in Freetype prior to 2.2 allows remote malicious users to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values.
Freetype Freetype
1 EDB exploit
668
VMScore
CVE-2007-3506
The ft_bitmap_assure_buffer function in src/base/ftbimap.c in FreeType 2.3.3 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via unspecified vectors involving bitmap fonts, related to a "memory buffer overwrite bug.&q...
Freetype Freetype
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »