FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

References

git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=3774fc08b502c3e685afca098b6e8a195aded6a0

www.debian.org/security/2017/dsa-3839

www.securityfocus.com/bid/99091

bugs.chromium.org/p/oss-fuzz/issues/detail?id=941

security.gentoo.org/glsa/201706-14

www.oracle.com/security-alerts/cpuapr2020.html

www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

debian 3

ubuntucve 1

prion 1

nessus 21

alpinelinux 1

redhatcve 1

veracode 1

osv 2

openvas 16

nvd 1

cvelist 1

debiancve 1

slackware 1

cve 1

archlinux 2

cloudfoundry 1

photon 3

ubuntu 2

freebsd 1

fedora 3

ibm 3

mageia 1

suse 2

gentoo 1

f5 1

oracle 3

debian

[SECURITY] [DLA 931-1] freetype security update

2017-05-06 10:54:04

[SECURITY] [DSA 3839-1] freetype security update

2017-04-28 19:24:57

[SECURITY] [DSA 3839-1] freetype security update

2017-04-28 19:24:57

ubuntucve

CVE-2017-8287

2017-04-26 00:00:00

prion

Heap overflow

2017-04-27 00:59:00

nessus

EulerOS Virtualization 2.5.1 : freetype (EulerOS-SA-2018-1381)

2018-11-21 00:00:00

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : freetype (SSA:2017-136-01)

2017-05-17 00:00:00

Photon OS 1.0: Freetype2 PHSA-2017-0017

2019-02-07 00:00:00

alpinelinux

CVE-2017-8287

2017-04-27 00:59:00

redhatcve

CVE-2017-8287

2017-04-27 08:49:00

veracode

Heap Based Buffer Overflow

2017-04-27 22:11:21

osv

freetype - security update

2017-05-06 00:00:00

freetype - security update

2017-04-28 00:00:00

openvas

Slackware: Security Advisory (SSA:2017-136-01)

2022-04-21 00:00:00

Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2018-1381)

2020-01-23 00:00:00

Debian: Security Advisory (DLA-931-1)

2018-01-24 00:00:00

nvd

CVE-2017-8287

2017-04-27 00:59:00

cvelist

CVE-2017-8287

2017-04-27 00:00:00

debiancve

CVE-2017-8287

2017-04-27 00:59:00

slackware

[slackware-security] freetype

2017-05-16 20:14:26

cve

CVE-2017-8287

2017-04-27 00:59:00

archlinux

[ASA-201705-10] lib32-freetype2: arbitrary code execution

2017-05-10 00:00:00

[ASA-201705-7] freetype2: arbitrary code execution

2017-05-09 00:00:00

cloudfoundry

USN-3282-1: FreeType vulnerabilities | Cloud Foundry

2017-06-02 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0017

2017-05-22 00:00:00

Critical Photon OS Security Update - PHSA-2018-0058

2018-06-12 00:00:00

Critical Photon OS Security Update - PHSA-2022-0472

2022-02-17 00:00:00

ubuntu

FreeType vulnerabilities

2017-05-17 00:00:00

FreeType vulnerabilities

2017-05-09 00:00:00

freebsd

freetype2 -- buffer overflows

2017-05-17 00:00:00

fedora

[SECURITY] Fedora 25 Update: freetype-2.6.5-7.fc25

2017-05-07 00:03:26

[SECURITY] Fedora 24 Update: freetype-2.6.3-5.fc24

2017-05-06 23:52:55

[SECURITY] Fedora 26 Update: freetype-2.7.1-6.fc26

2017-05-06 17:15:09

ibm

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in freetype2 (CVE-2017-8287 CVE-2017-8105 CVE-2016-10244)

2023-12-07 22:31:02

Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by a vulnerabilities in freetype2 (CVE-2016-10244 CVE-2017-8105 CVE-2017-8287)

2018-07-26 20:24:26

Security Bulletin: Multiple vulnerabilities in freetype2 affect IBM Flex System Manager (FSM)

2018-06-18 01:42:30

mageia

Updated freetype2 packages fix security vulnerability

2017-05-02 09:37:59

suse

Security update for freetype2 (important)

2018-02-12 12:08:42

Security update for freetype2 (important)

2018-02-09 21:13:00

gentoo

FreeType: Multiple vulnerabilities

2017-06-06 00:00:00

K000141126: Multiple FreeType vulnerabilities

2024-09-19 00:00:00

oracle

Oracle Critical Patch Update Advisory - April 2019

2019-04-16 00:00:00

Oracle Critical Patch Update Advisory - October 2020

2020-10-20 00:00:00

Oracle Critical Patch Update Advisory - April 2020

2020-04-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

9.7

Confidence

High

EPSS

0.009

Percentile

83.2%

JSON

Related for OSV:CVE-2017-8287