CVE-2010-3311

🗓️ 07 Jan 2011 23:00:18Reported by [email protected]Type

Integer overflow in libXft prior to 2.4, allows remote attackers to cause denial of service or execute arbitrary code via crafted CFF font file, triggering a heap-based buffer overflow

Reporter	Title	Published	Views	Family All 100
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Gentoo Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
Tenable Nessus	CentOS 3 : freetype (CESA-2010:0736)	6 Oct 201000:00	–	nessus
Tenable Nessus	CentOS 4 / 5 : freetype (CESA-2010:0737)	6 Oct 201000:00	–	nessus
Tenable Nessus	Debian DSA-2116-1 : freetype - integer overflow	6 Oct 201000:00	–	nessus
Tenable Nessus	Fedora 13 : freetype-2.3.11-6.fc13 (2010-15705)	20 Oct 201000:00	–	nessus
Tenable Nessus	Fedora 12 : freetype-2.3.11-6.fc12 (2010-15785)	2 Nov 201000:00	–	nessus

NVD

Node

freetype freetypeRange≤2.3.12

freetype freetypeMatch1.3.1

freetype freetypeMatch2.0.6

freetype freetypeMatch2.0.9

freetype freetypeMatch2.1

freetype freetypeMatch2.1.3

freetype freetypeMatch2.1.4

freetype freetypeMatch2.1.5

freetype freetypeMatch2.1.6

freetype freetypeMatch2.1.7

freetype freetypeMatch2.1.8

freetype freetypeMatch2.1.8rc1

freetype freetypeMatch2.1.9

freetype freetypeMatch2.1.10

freetype freetypeMatch2.2.0

freetype freetypeMatch2.2.1

freetype freetypeMatch2.2.10

freetype freetypeMatch2.3.0

freetype freetypeMatch2.3.1

freetype freetypeMatch2.3.2

freetype freetypeMatch2.3.3

freetype freetypeMatch2.3.4

freetype freetypeMatch2.3.5

freetype freetypeMatch2.3.6

freetype freetypeMatch2.3.7

freetype freetypeMatch2.3.8

freetype freetypeMatch2.3.9

freetype freetypeMatch2.3.10

freetype freetypeMatch2.3.11

Source	Link
rhn	www.rhn.redhat.com/errata/RHSA-2010-0737.html
ubuntu	www.ubuntu.com/usn/USN-1013-1
redhat	www.redhat.com/support/errata/RHSA-2010-0864.html
mandriva	www.mandriva.com/security/advisories
securityfocus	www.securityfocus.com/bid/43700
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
rhn	www.rhn.redhat.com/errata/RHSA-2010-0736.html
lists	www.lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
debian	www.debian.org/security/2010/dsa-2116
secunia	www.secunia.com/advisories/48951

29 Apr 2026 01:13Current

8High risk

Vulners AI Score8

CVSS 29.3

EPSS0.05264

CWE-189