Published: 13/02/2018 Updated: 26/01/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

An issue exists in FreeType 2 up to and including 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freetype freetype
canonical ubuntu linux 17.10

Debian Bug report logs - #890450 freetype: CVE-2018-6942: NULL pointer dereference in the Ins_GETVARIATION() function Package: src:freetype; Maintainer for src:freetype is Hugh McMaster <hughmcmaster@outlookcom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 14 Feb 2018 21:15:02 UTC Severity: imp ...

FreeType could be made to crash if it opened a specially crafted file ...

An issue was discovered in FreeType 2 through 29 A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterpc could lead to DoS via a crafted font file ...

An issue was discovered in FreeType 2 before 291 A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterpc could lead to denial of service via a crafted font file ...

CWE-476 https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=29c759284e305ec428703c9a5831d0b1fc3497ef https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5736 https://usn.ubuntu.com/3572-1/https://www.oracle.com/security-alerts/cpuapr2020.html http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00054.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890450 https://usn.ubuntu.com/3572-1/https://nvd.nist.gov

CVE-2018-6942

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect