Published: 08/02/2015 Updated: 30/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The Mac_Read_POST_Resource function in base/ftobjs.c in FreeType prior to 2.5.4 proceeds with adding to length values without validating the original values, which allows remote malicious users to cause a denial of service (integer overflow and heap-based buffer overflow) or possibly have unspecified other impact via a crafted Mac font.

Vulnerable Product	Search on Vulmon	Subscribe to Product
canonical ubuntu linux 15.04
canonical ubuntu linux 10.04
canonical ubuntu linux 12.04
canonical ubuntu linux 14.10
canonical ubuntu linux 14.04
oracle solaris 10.0
oracle solaris 11.2
fedoraproject fedora 21
fedoraproject fedora 20
redhat enterprise linux server eus 7.1
redhat enterprise linux hpc node eus 7.1
redhat enterprise linux server eus 6.6.z
redhat enterprise linux workstation 7.0
redhat enterprise linux server 7.0
redhat enterprise linux workstation 6.0
redhat enterprise linux server 6.0
redhat enterprise linux hpc node 7.0
redhat enterprise linux desktop 7.0
redhat enterprise linux hpc node 6.0
redhat enterprise linux desktop 6.0
opensuse opensuse 13.1
opensuse opensuse 13.2
freetype freetype

Debian Bug report logs - #777656 freetype: various new security issues Package: src:freetype; Maintainer for src:freetype is Hugh McMaster <hughmcmaster@outlookcom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 11 Feb 2015 06:54:07 UTC Severity: grave Tags: fixed-upstream, security, upstream Fo ...

FreeType could be made to crash or run programs as your login if it opened a specially crafted file ...

Multiple integer overflow flaws and an integer signedness flaw, leading to heap-based buffer overflows, were found in the way FreeType handled Mac fonts If a specially crafted font file was loaded by an application linked against FreeType, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the us ...

NVD-CWE-Other http://code.google.com/p/google-security-research/issues/detail?id=153 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=240c94a185cd8dae7d03059abec8a5662c35ecd3 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=cd4a5a26e591d01494567df9dec7f72d59551f6e http://www.ubuntu.com/usn/USN-2510-1 http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150162.html http://rhn.redhat.com/errata/RHSA-2015-0696.html http://www.mandriva.com/security/advisories?name=MDVSA-2015:055 http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150148.html http://advisories.mageia.org/MGASA-2015-0083.html http://lists.opensuse.org/opensuse-updates/2015-03/msg00091.html http://www.ubuntu.com/usn/USN-2739-1 http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html http://www.debian.org/security/2016/dsa-3461 http://www.securityfocus.com/bid/72986 https://security.gentoo.org/glsa/201503-05 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777656 https://usn.ubuntu.com/2510-1/https://nvd.nist.gov

CVE-2014-9674

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect