Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2010-2498
HistoryAug 19, 2010 - 6:00 p.m.

CVE-2010-2498

2010-08-1918:00:00
Debian Security Bug Tracker
security-tracker.debian.org
14

0.004 Low

EPSS

Percentile

74.7%

The psh_glyph_find_strong_points function in pshinter/pshalgo.c in FreeType before 2.4.0 does not properly implement hinting masks, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a crafted font file that triggers an invalid free operation.