Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-1807HistoryJun 16, 2008 - 7:41 p.m.
CVE-2008-1807
2008-06-1619:41:00
Debian Security Bug Tracker
security-tracker.debian.org
13
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid “number of axes” field in a Printer Font Binary (PFB) file, which triggers a free of arbitrary memory locations, leading to memory corruption.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | freetype | < 2.3.6-1 | freetype_2.3.6-1_all.deb |
| Debian | 11 | all | freetype | < 2.3.6-1 | freetype_2.3.6-1_all.deb |
| Debian | 10 | all | freetype | < 2.3.6-1 | freetype_2.3.6-1_all.deb |
| Debian | 999 | all | freetype | < 2.3.6-1 | freetype_2.3.6-1_all.deb |
| Debian | 13 | all | freetype | < 2.3.6-1 | freetype_2.3.6-1_all.deb |
Related
prion
prion
Memory corruption
2008-06-16 19:41:00
securityvulns
securityvulns
iDefense Security Advisory 06.10.08: Multiple Vendor FreeType2 PFB Memory Corruption Vulnerability
2008-06-10 00:00:00
FreeType2 library multiple security vulnerabilities
2008-06-10 00:00:00
VMWare multiple applications security vulnerabilities
2008-09-02 00:00:00
cve
cve
CVE-2008-1807
2008-06-16 19:41:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:23:03
ubuntucve
ubuntucve
CVE-2008-1807
2008-06-16 00:00:00
openvas
openvas
Debian Security Advisory DSA 1635-1 (freetype)
2008-09-17 00:00:00
CentOS Update for freetype CESA-2008:0556 centos3 x86_64
2009-02-27 00:00:00
Ubuntu Update for freetype vulnerabilities USN-643-1
2009-03-23 00:00:00
redhat
redhat
(RHSA-2008:0556) Important: freetype security update
2008-06-20 00:00:00
(RHSA-2008:0558) Important: freetype security update
2008-06-20 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: freetype-2.3.5-6.fc9
2008-06-18 03:15:22
[SECURITY] Fedora 8 Update: freetype-2.3.5-4.fc8
2008-06-18 03:15:47
ubuntu
ubuntu
FreeType vulnerabilities
2008-09-11 00:00:00
centos
centos
freetype security update
2008-06-20 15:05:03
security update
2008-06-22 23:50:06
gentoo
gentoo
FreeType: User-assisted execution of arbitrary code
2008-06-23 00:00:00
VMware Player, Server, Workstation: Multiple vulnerabilities
2012-09-29 00:00:00
nessus
nessus
RHEL 3 / 4 / 5 : freetype (RHSA-2008:0556)
2008-06-24 00:00:00
osv
osv
freetype - multiple vulnerabilities
2008-09-10 00:00:00
debian
debian
[SECURITY] [DSA 1635-1] New freetype packages fix multiple vulnerabilities
2008-09-10 19:45:14
oraclelinux
oraclelinux
freetype security update
2008-06-20 00:00:00
freebsd
freebsd
FreeType 2 -- Multiple Vulnerabilities
2008-06-10 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Related for DEBIANCVE:CVE-2008-1807