CVE-2014-9662

2015-02-08T11:59:00
ID CVE-2014-9662
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:27:00

Description

cff/cf2ft.c in FreeType before 2.5.4 does not validate the return values of point-allocation functions, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted OTF font.