Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-3814HistoryNov 26, 2010 - 8:00 p.m.
CVE-2010-3814
2010-11-2620:00:00
Debian Security Bug Tracker
security-tracker.debian.org
11
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.16 Low
EPSS
Percentile
95.9%
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, as demonstrated by a PDF document with a crafted embedded font.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | freetype | <Â 2.4.2-2.1 | freetype_2.4.2-2.1_all.deb |
| Debian | 11 | all | freetype | <Â 2.4.2-2.1 | freetype_2.4.2-2.1_all.deb |
| Debian | 10 | all | freetype | <Â 2.4.2-2.1 | freetype_2.4.2-2.1_all.deb |
| Debian | 999 | all | freetype | <Â 2.4.2-2.1 | freetype_2.4.2-2.1_all.deb |
| Debian | 13 | all | freetype | <Â 2.4.2-2.1 | freetype_2.4.2-2.1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2010-3814
2010-10-22 00:00:00
cve
cve
CVE-2010-3814
2010-11-26 20:00:00
prion
prion
Heap overflow
2010-11-26 20:00:00
nessus
nessus
SuSE 11.1 Security Update : freetype2 (SAT Patch Number 4089)
2011-04-07 00:00:00
openSUSE Security Update : freetype2 (openSUSE-SU-2011:0361-1)
2014-06-13 00:00:00
SuSE 10 Security Update : freetype2 (ZYPP Patch Number 7366)
2011-04-19 00:00:00
openvas
openvas
Mandriva Update for freetype2 MDVSA-2010:236 (freetype2)
2010-11-23 00:00:00
Debian: Security Advisory (DSA-2155-1)
2011-03-07 00:00:00
Mandriva Update for freetype2 MDVSA-2010:236 (freetype2)
2010-11-23 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2155-1] freetype security update
2011-02-03 00:00:00
freetype library multiple security vulnerabilities
2011-11-27 00:00:00
Apple Mac OS X multiple security vulnerabilities
2011-03-23 00:00:00
debian
debian
[SECURITY] [DSA 2155-1] freetype security update
2011-01-30 19:25:45
ubuntu
ubuntu
FreeType vulnerabilities
2010-11-04 00:00:00
gentoo
gentoo
FreeType: Multiple vulnerabilities
2012-01-23 00:00:00
suse
suse
Security update for freetype2 (important)
2012-04-23 18:08:18
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.16 Low
EPSS
Percentile
95.9%
Related for DEBIANCVE:CVE-2010-3814