freetype freetype vulnerabilities and exploits

(subscribe to this query)

Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType prior to 2.5.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.0 Freetype Freetype 2.0.1 Freetype Freetype 2.0.2 Freetype Freetype 2.0.3 Freetype Freetype 2.0.4 Freetype Freetype 2.0.5 Freetype Freetype 2.0.6 Freetype Freetype 2.0.7 Freetype Freetype 2.0.8 Freetype Freetype 2.0.9

Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType prior to 2.4 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a ...

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.6 Freetype Freetype 2.0.9 Freetype Freetype 2.1 Freetype Freetype 2.1.3 Freetype Freetype 2.1.4 Freetype Freetype 2.1.5 Freetype Freetype 2.1.6 Freetype Freetype 2.1.7 Freetype Freetype 2.1.8 Freetype Freetype 2.1.9

FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.0 Freetype Freetype 2.0.1 Freetype Freetype 2.0.2 Freetype Freetype 2.0.3 Freetype Freetype 2.0.4 Freetype Freetype 2.0.5 Freetype Freetype 2.0.6 Freetype Freetype 2.0.7 Freetype Freetype 2.0.8 Freetype Freetype 2.0.9

The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.0 Freetype Freetype 2.0.1 Freetype Freetype 2.0.2 Freetype Freetype 2.0.3 Freetype Freetype 2.0.4 Freetype Freetype 2.0.5 Freetype Freetype 2.0.6 Freetype Freetype 2.0.7 Freetype Freetype 2.0.8 Freetype Freetype 2.0.9

The _bdf_parse_glyphs function in FreeType prior to 2.4.11 allows context-dependent malicious users to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.0 Freetype Freetype 2.0.1 Freetype Freetype 2.0.2 Freetype Freetype 2.0.3 Freetype Freetype 2.0.4 Freetype Freetype 2.0.5 Freetype Freetype 2.0.6 Freetype Freetype 2.0.7 Freetype Freetype 2.0.8 Freetype Freetype 2.0.9

bdf/bdflib.c in FreeType prior to 2.4.2 allows remote malicious users to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string.

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.6 Freetype Freetype 2.0.9 Freetype Freetype 2.1 Freetype Freetype 2.1.3 Freetype Freetype 2.1.4 Freetype Freetype 2.1.5 Freetype Freetype 2.1.6 Freetype Freetype 2.1.7 Freetype Freetype 2.1.8 Freetype Freetype 2.1.9

Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, a...

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.6 Freetype Freetype 2.0.9 Freetype Freetype 2.1 Freetype Freetype 2.1.3 Freetype Freetype 2.1.4 Freetype Freetype 2.1.5 Freetype Freetype 2.1.6 Freetype Freetype 2.1.7 Freetype Freetype 2.1.8 Freetype Freetype 2.1.9

Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.

Freetype Freetype Freetype Freetype 1.3.1 Freetype Freetype 2.0.6 Freetype Freetype 2.0.9 Freetype Freetype 2.1 Freetype Freetype 2.1.3 Freetype Freetype 2.1.4 Freetype Freetype 2.1.5 Freetype Freetype 2.1.6 Freetype Freetype 2.1.7 Freetype Freetype 2.1.8 Freetype Freetype 2.1.9

Multiple off-by-one errors in FreeType2 prior to 2.3.6 allow context-dependent malicious users to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer ...

Freetype Freetype 1.3.1 Freetype Freetype 2.0.6 Freetype Freetype 2.0.9 Freetype Freetype 2.1.7 Freetype Freetype 2.1.9 Freetype Freetype 2.1.10 Freetype Freetype 2.2.0 Freetype Freetype 2.2.1 Freetype Freetype 2.2.10 Freetype Freetype 2.3.3 Freetype Freetype 2.3.4 Freetype Freetype 2.3.5

Multiple integer overflows in FreeType prior to 2.2 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a cr...

Freetype Freetype 2.0.9 Freetype Freetype 2.1.3 Freetype Freetype 2.1.4 Freetype Freetype 2.1.5 Freetype Freetype 2.1.6 Freetype Freetype 2.1.7 Freetype Freetype 2.1.8 Freetype Freetype 2.1.9 Freetype Freetype 2.1.10

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook