Integer signedness error in psaux/t1decode.c in FreeType prior to 2.4.6, as used in CoreGraphics in Apple iOS prior to 4.2.9 and 4.3.x prior to 4.3.4 and other products, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Type 1 font in a PDF document, as exploited in the wild in July 2011.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freetype freetype 2.4.3 |
||
freetype freetype 2.4.2 |
||
freetype freetype 2.3.8 |
||
freetype freetype 2.3.7 |
||
freetype freetype 2.3.0 |
||
freetype freetype 2.2.1 |
||
freetype freetype 2.4.1 |
||
freetype freetype 2.4.0 |
||
freetype freetype 2.3.6 |
||
freetype freetype 2.3.5 |
||
freetype freetype 2.2.10 |
||
freetype freetype |
||
freetype freetype 2.3.9 |
||
freetype freetype 2.3.10 |
||
freetype freetype 2.3.4 |
||
freetype freetype 2.3.3 |
||
freetype freetype 2.4.4 |
||
freetype freetype 2.3.11 |
||
freetype freetype 2.3.12 |
||
freetype freetype 2.3.2 |
||
freetype freetype 2.3.1 |
||
apple iphone_os 4.0 |
||
apple iphone_os 4.0.1 |
||
apple iphone_os 3.2.2 |
||
apple iphone_os 3.2.1 |
||
apple iphone_os 2.2.1 |
||
apple iphone_os 2.2 |
||
apple iphone_os 1.1.4 |
||
apple iphone_os 1.1.3 |
||
apple iphone_os 4.0.2 |
||
apple iphone_os 4.2 |
||
apple iphone_os 3.2 |
||
apple iphone_os 3.1.3 |
||
apple iphone_os 2.1.1 |
||
apple iphone_os 2.1 |
||
apple iphone_os 2.0.2 |
||
apple iphone_os 1.1.2 |
||
apple iphone_os 1.1.1 |
||
apple iphone_os 4.2.1 |
||
apple iphone_os 4.2.5 |
||
apple iphone_os 4.3.0 |
||
apple iphone_os 4.3.1 |
||
apple iphone_os 3.1.2 |
||
apple iphone_os 3.1 |
||
apple iphone_os 2.0.1 |
||
apple iphone_os 2.0.0 |
||
apple iphone_os 1.1.0 |
||
apple iphone_os 1.0.2 |
||
apple iphone_os |
||
apple iphone_os 4.1 |
||
apple iphone_os 4.3.2 |
||
apple iphone_os 4.3.3 |
||
apple iphone_os 3.0.1 |
||
apple iphone_os 3.0 |
||
apple iphone_os 2.0 |
||
apple iphone_os 1.1.5 |
||
apple iphone_os 1.0.1 |
||
apple iphone_os 1.0.0 |