Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype 2.2.1 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2007-2754
Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and previous versions might allow remote malicious users to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.
Freetype Freetype
383
VMScore
CVE-2012-5668
FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
383
VMScore
CVE-2012-5669
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
383
VMScore
CVE-2012-5670
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 2.4.9
Freetype Freetype 1.3.1
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
Freetype Freetype 2.1.8
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
383
VMScore
CVE-2012-1143
FreeType prior to 2.4.9, as used in Mozilla Firefox Mobile prior to 10.0.4 and other products, allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted font.
Freetype Freetype 2.0.3
Freetype Freetype 2.4.0
Freetype Freetype 2.4.2
Mozilla Firefox Mobile 4.0
Freetype Freetype 2.3.6
Freetype Freetype
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.0.1
Freetype Freetype 2.3.5
Mozilla Firefox Mobile 8.0
Mozilla Firefox Mobile 10.0.1
Mozilla Firefox Mobile 7.0
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Mozilla Firefox Mobile 10.0.2
Freetype Freetype 1.3.1
Mozilla Firefox Mobile 6.0.2
Freetype Freetype 2.4.4
Freetype Freetype 2.4.6
383
VMScore
CVE-2010-3053
bdf/bdflib.c in FreeType prior to 2.4.2 allows remote malicious users to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string.
Freetype Freetype 2.4.0
Freetype Freetype 2.3.6
Freetype Freetype 2.1.9
Freetype Freetype 2.1.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.5
Freetype Freetype 2.1
Freetype Freetype 2.1.5
Freetype Freetype 2.3.10
Freetype Freetype 1.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.2.10
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.3.3
Freetype Freetype 2.1.6
Freetype Freetype 2.3.0
Freetype Freetype 2.3.1
Freetype Freetype
Freetype Freetype 2.0.9
Freetype Freetype 2.3.7
Freetype Freetype 2.0.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4