Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetype freetype vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-9662
cff/cf2ft.c in FreeType prior to 2.5.4 does not validate the return values of point-allocation functions, which allows remote malicious users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted OTF font.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Debian Debian Linux 7.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Freetype Freetype
7.5
CVSSv2
CVE-2014-9668
The woff_open_font function in sfnt/sfobjs.c in FreeType prior to 2.5.4 proceeds with offset+length calculations without restricting length values, which allows remote malicious users to cause a denial of service (integer overflow and heap-based buffer overflow) or possibly have ...
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Freetype Freetype
10
CVSSv2
CVE-2014-3175
Multiple unspecified vulnerabilities in Google Chrome prior to 37.0.2062.94 allow malicious users to cause a denial of service or possibly have other impact via unknown vectors, related to the load_truetype_glyph function in truetype/ttgload.c in FreeType and other functions in o...
Google Chrome 37.0.2062.49
Google Chrome 37.0.2062.60
Google Chrome 37.0.2062.44
Google Chrome 37.0.2062.31
Google Chrome 37.0.2062.11
Google Chrome 37.0.2062.51
Google Chrome 37.0.2062.76
Google Chrome 37.0.2062.28
Google Chrome 37.0.2062.48
Google Chrome 37.0.2062.78
Google Chrome 37.0.2062.14
Google Chrome 37.0.2062.16
Google Chrome 37.0.2062.35
Google Chrome 37.0.2062.69
Google Chrome 37.0.2062.25
Google Chrome 37.0.2062.4
Google Chrome 37.0.2062.36
Google Chrome 37.0.2062.59
Google Chrome 37.0.2062.81
Google Chrome 37.0.2062.73
Google Chrome 37.0.2062.67
Google Chrome 37.0.2062.77
6.8
CVSSv2
CVE-2014-2241
The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType prior to 2.5.3 do not properly check if a subroutine exists, which allows remote malicious users to cause a denial of service (assertion failure), as demonstrated by a crafte...
Freetype Freetype 2.5
Freetype Freetype 2.5.1
Freetype Freetype
Canonical Ubuntu Linux 13.10
7.5
CVSSv2
CVE-2014-2240
Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType prior to 2.5.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.
Freetype Freetype 2.5.1
Freetype Freetype
Freetype Freetype 2.0.6
Freetype Freetype 2.0.7
Freetype Freetype 2.1.5
Freetype Freetype 2.4.12
Freetype Freetype 2.5
Freetype Freetype 2.0.3
Freetype Freetype 2.0.4
Freetype Freetype 2.0.5
Freetype Freetype 2.1.3
Freetype Freetype 2.1.4
Freetype Freetype 2.1.9
Freetype Freetype 2.2.0
Freetype Freetype 2.3.2
Freetype Freetype 2.3.3
Freetype Freetype 2.3.4
Freetype Freetype 2.4.1
Freetype Freetype 2.4.10
Freetype Freetype 2.4.7
Freetype Freetype 2.4.8
Freetype Freetype 2.0.1
6.8
CVSSv2
CVE-2014-0674
Cisco Video Surveillance Operations Manager (VSOM) does not require authentication for MySQL database connections, which allows remote malicious users to obtain sensitive information, modify data, or cause a denial of service by leveraging network connectivity from a client syste...
Cisco Video Surveillance Operations Manager -
9.3
CVSSv2
CVE-2013-1868
Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and previous versions allow remote malicious users to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype renderer and (2) HTML subtitle parser.
Videolan Vlc Media Player 2.0.3
Videolan Vlc Media Player 2.0.2
Videolan Vlc Media Player
Videolan Vlc Media Player 2.0.0
Videolan Vlc Media Player 2.0.1
1 EDB exploit
4.3
CVSSv2
CVE-2012-5669
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.
Freetype Freetype 2.4.0
Freetype Freetype 2.4.4
Freetype Freetype 2.3.9
Freetype Freetype 2.3.8
Freetype Freetype 2.3.10
Freetype Freetype 2.3.1
Freetype Freetype 2.1.8
Freetype Freetype 2.0.4
Freetype Freetype 2.0.5
Freetype Freetype 2.0.6
Freetype Freetype 1.3.1
Freetype Freetype 2.4.9
Freetype Freetype
Freetype Freetype 2.4.5
Freetype Freetype 2.4.3
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.3.12
Freetype Freetype 2.3.11
Freetype Freetype 2.1.7
Freetype Freetype 2.1.6
Freetype Freetype 2.1
4.3
CVSSv2
CVE-2012-5668
FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.
Freetype Freetype 2.4.3
Freetype Freetype 2.4.0
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.3.9
Freetype Freetype 2.3.11
Freetype Freetype 2.3.10
Freetype Freetype 2.1.6
Freetype Freetype 2.1.8
Freetype Freetype 2.0.3
Freetype Freetype 2.0.4
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
Freetype Freetype 2.4.9
Freetype Freetype 2.4.7
Freetype Freetype 2.4.1
Freetype Freetype 2.3.6
Freetype Freetype 2.3.2
Freetype Freetype 2.2.0
Freetype Freetype 2.2.1
Freetype Freetype 2.1.3
Freetype Freetype 2.1.10
4.3
CVSSv2
CVE-2012-5670
The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.
Freetype Freetype 2.4.4
Freetype Freetype 2.4.8
Freetype Freetype 2.3.8
Freetype Freetype 2.3.7
Freetype Freetype 2.3.1
Freetype Freetype 2.3.0
Freetype Freetype 2.1.8
Freetype Freetype 2.1.3
Freetype Freetype 2.0.5
Freetype Freetype 2.0.7
Freetype Freetype 1.3.1
Freetype Freetype 2.4.3
Freetype Freetype 2.4.0
Freetype Freetype 2.3.3
Freetype Freetype 2.3.9
Freetype Freetype 2.3.11
Freetype Freetype 2.3.10
Freetype Freetype 2.1.6
Freetype Freetype 2.0.3
Freetype Freetype 2.0.4
Freetype Freetype 2.0.9
Freetype Freetype 2.0.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »