Lucene search

K
osvGoogleOSV:USN-4593-1
HistoryOct 20, 2020 - 12:02 p.m.

freetype vulnerability

2020-10-2012:02:17
Google
osv.dev
6

AI Score

8.5

Confidence

High

EPSS

0.026

Percentile

90.3%

Sergei Glazunov discovered that FreeType did not correctly handle certain
malformed font files. If a user were tricked into using a specially crafted
font file, a remote attacker could cause FreeType to crash or possibly
execute arbitrary code with user privileges.