Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2016-10244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The parsecharstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cau...

7.8CVSS7.8AI score0.03235EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.15 views

RHEL 5 : freetype (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - freetype: parsecharstrings function in type1/t1load.c does not ensure that a font contains a glyph name...

7.4AI score0.03235EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:31 p.m.28 views

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in freetype2 (CVE-2017-8287 CVE-2017-8105 CVE-2016-10244)

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerabilities in freetype2. Vulnerability Details CVEID: CVE-2017-8287 DESCRIPTION: Freetype2 is vulnerable to a denial of service, caused by a heap-based buffer overflow in the t1builderclosecontour function in...

9.8CVSS1.9AI score0.04188EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2017-0085)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.03235EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2018:0462-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.04188EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/26 8:24 p.m.31 views

Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by a vulnerabilities in freetype2 (CVE-2016-10244 CVE-2017-8105 CVE-2017-8287)

Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities in freetype2. Vulnerability Details CVEID: CVE-2017-8287 DESCRIPTION: Freetype2 is vulnerable to a denial of service, caused by a heap-based buffer overflow in the t1builderclosecontour function in...

9.8CVSS1.9AI score0.04188EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/02/20 12:0 a.m.39 views

SUSE SLES11 Security Update : freetype2 (SUSE-SU-2018:0462-1)

This update for freetype2 fixes the following issues: Security issue fixed : - CVE-2016-10244: The parsecharstrings function in type1/t1load.c did not ensure that a font contains a glyph name, which allowed remote attackers to cause a denial of service heap-based buffer over-read or possibly have...

9.8CVSS7.8AI score0.04188EPSS
Exploits1References10
OSV
OSV
added 2018/02/16 10:34 a.m.7 views

SUSE-SU-2018:0462-1 Security update for freetype2

This update for freetype2 fixes the following issues: Security issue fixed: - CVE-2016-10244: The parsecharstrings function in type1/t1load.c did not ensure that a font contains a glyph name, which allowed remote attackers to cause a denial of service heap-based buffer over-read or possibly have...

9.8CVSS8.9AI score0.04188EPSS
Exploits1References7
OPENSUSE Linux
OPENSUSE Linux
added 2018/02/12 12:8 p.m.41 views

Security update for freetype2 (important)

This update for freetype2 fixes the following security issues: - CVE-2016-10244: Make sure that the parsecharstrings function in type1/t1load.c does ensure that a font contains a glyph name to prevent a DoS through a heap-based buffer over-read or possibly have unspecified other impact via a...

7.5CVSS9.5AI score0.04188EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/02/12 12:0 a.m.33 views

openSUSE Security Update : freetype2 (openSUSE-2018-156)

This update for freetype2 fixes the following security issues : - CVE-2016-10244: Make sure that the parsecharstrings function in type1/t1load.c does ensure that a font contains a glyph name to prevent a DoS through a heap-based buffer over-read or possibly have unspecified other impact via a...

9.8CVSS7.7AI score0.04188EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2018/02/12 12:0 a.m.44 views

SUSE SLED12 / SLES12 Security Update : freetype2 (SUSE-SU-2018:0414-1)

This update for freetype2 fixes the following security issues : - CVE-2016-10244: Make sure that the parsecharstrings function in type1/t1load.c does ensure that a font contains a glyph name to prevent a DoS through a heap-based buffer over-read or possibly have unspecified other impact via a...

9.8CVSS7.7AI score0.04188EPSS
Exploits1References13
Debian
Debian
added 2017/04/28 7:24 p.m.41 views

[SECURITY] [DSA 3839-1] freetype security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3839-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 28, 2017 https://www.debian.org/security/faq -...

9.8CVSS9.4AI score0.04188EPSS
Exploits1
Debian
Debian
added 2017/04/28 7:24 p.m.38 views

[SECURITY] [DSA 3839-1] freetype security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3839-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 28, 2017 https://www.debian.org/security/faq -...

7.5CVSS2.7AI score0.04188EPSS
Exploits1
Mageia
Mageia
added 2017/03/25 4:56 p.m.39 views

Updated freetype2 packages fix security vulnerability

The parsecharstrings function in type1/t1load.c in FreeType 2 did not ensure that a font contains a glyph name, which could allow remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted file CVE-2016-10244...

7.8CVSS6.4AI score0.03235EPSS
Exploits1References3
OSV
OSV
added 2017/03/25 4:56 p.m.6 views

MGASA-2017-0085 Updated freetype2 packages fix security vulnerability

The parsecharstrings function in type1/t1load.c in FreeType 2 did not ensure that a font contains a glyph name, which could allow remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted file CVE-2016-10244...

7.8CVSS8.1AI score0.03235EPSS
Exploits1References4
CVE
CVE
added 2017/03/06 6:11 a.m.165 views

CVE-2016-10244

CVE-2016-10244 affects FreeType 2 up to version 2.6.x (before 2.7). The vulnerability is in parse_charstrings (type1/t1load.c) where a font may lack a glyph name, enabling a crafted font to cause a heap-based buffer over-read and remote denial of service. Connected advisories confirm fixes in dow...

7.8CVSS7.2AI score0.03235EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder