The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType prior to 2.5.3 do not properly check if a subroutine exists, which allows remote malicious users to cause a denial of service (assertion failure), as demonstrated by a crafted ttf file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freetype freetype 2.5 |
||
freetype freetype 2.5.1 |
||
freetype freetype |
||
canonical ubuntu linux 13.10 |