Lucene search

K
prionPRIOn knowledge basePRION:CVE-2007-2754
HistoryMay 17, 2007 - 10:30 p.m.

Integer overflow

2007-05-1722:30:00
PRIOn knowledge base
www.prio-n.com
7

AI Score

7.8

Confidence

High

EPSS

0.622

Percentile

97.8%

Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.

CPENameOperatorVersion
freetypele2.3.4

References