EUVD-2014-2279

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Stack-based buffer overflow in FreeType before version 2.5.3 allows remote code execution risk.

Reporter	Title	Published	Views	Family All 57
FreeBSD	freetype -- Out of bounds stack-based read/write	7 Dec 201400:00	–	freebsd
CVE	CVE-2014-2240	12 Mar 201414:00	–	cve
Cvelist	CVE-2014-2240	12 Mar 201414:00	–	cvelist
Debian CVE	CVE-2014-2240	12 Mar 201414:00	–	debiancve
Fedora	[SECURITY] Fedora 20 Update: freetype-2.5.0-9.fc20	20 Feb 201508:31	–	fedora
Fedora	[SECURITY] Fedora 20 Update: mingw-freetype-2.5.0.1-2.fc20	10 Jun 201403:12	–	fedora
Fedora	[SECURITY] Fedora 19 Update: mingw-freetype-2.4.12-3.fc19	10 Jun 201402:59	–	fedora
Fedora	[SECURITY] Fedora 20 Update: mingw-freetype-2.5.4-1.fc20	2 Jan 201505:04	–	fedora
Fedora	[SECURITY] Fedora 21 Update: freetype-2.5.3-13.fc21	23 Dec 201418:31	–	fedora
Fedora	[SECURITY] Fedora 20 Update: freetype-2.5.0-5.fc20	15 Mar 201415:12	–	fedora

[
  {
    "enisaIdVendor": [
      {
        "id": "d2482670-e00d-3c48-9884-47b4edba7865",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "46e1ec99-361b-3c35-8edc-f648bdd0ac84",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
suse	www.suse.com/security/cve/CVE-2014-2240.html
advisories	www.advisories.mageia.org/CVE-2014-2240.html
secunia	www.secunia.com/advisories/57291
securitytracker	www.securitytracker.com/id/1029895
ubuntu	www.ubuntu.com/usn/USN-2148-1
secunia	www.secunia.com/advisories/57447
freetype	www.freetype.org/index.html
savannah	www.savannah.nongnu.org/bugs/
sourceforge	www.sourceforge.net/projects/freetype/files/freetype2/2.5.3
securityfocus	www.securityfocus.com/bid/66074

07 Oct 2025 00:30Current

5.5Medium risk

Vulners AI Score5.5

CVSS 27.5

EPSS0.02382