Lucene search
+L

294 matches found

OpenVAS
OpenVAS
added 2017/06/22 12:0 a.m.46 views

Debian Security Advisory DSA 3894-1 (graphite2 - security update)

Multiple vulnerabilities have been found in the Graphite font rendering engine which might result in denial of service or the execution of arbitrary code if a malformed font file is processed. OpenVAS Vulnerability Test $Id: deb3894.nasl 6607 2017-07-07 12:04:25Z cfischer $ Auto-generated from...

0.5AI score0.05216EPSS
Exploits6References1
Ubuntu
Ubuntu
added 2017/05/17 2:7 a.m.59 views

USN-3282-2: FreeType vulnerabilities

It was discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS7.8AI score0.04188EPSS
Exploits0
Ubuntu
Ubuntu
added 2017/05/09 2:37 p.m.63 views

USN-3282-1: FreeType vulnerabilities

It was discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS7.8AI score0.04188EPSS
Exploits0
Ubuntu
Ubuntu
added 2017/03/20 4:32 p.m.54 views

USN-3237-1: FreeType vulnerability

It was discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, resulting in a denial of service, or possibly execute arbitrary code...

7.8CVSS7.9AI score0.03235EPSS
Exploits1
GoogleProjectZero
GoogleProjectZero
added 2016/06/27 12:0 a.m.83 views

A year of Windows kernel font fuzzing #1: the results

Posted by Mateusz Jurczyk of Google Project Zero This post series is about how we used at-scale fuzzing to discover and report a total of 16 vulnerabilities in the handling of TrueType and OpenType fonts in the Windows kernel during the last year. In part 1 here, we present a general overview of...

9.3CVSS8.4AI score0.8669EPSS
Exploits9
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.34 views

Debian Security Advisory DSA 3370-1 (freetype - security update)

It was discovered that FreeType did not properly handle some malformed inputs. This could allow remote attackers to cause a denial of service crash via crafted font files. OpenVAS Vulnerability Test $Id: deb3370.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3370-1 usi...

7.5CVSS0.03734EPSS
Exploits0References1
securityvulns
securityvulns
added 2015/09/14 12:0 a.m.51 views

[USN-2739-1] FreeType vulnerabilities

========================================================================== Ubuntu Security Notice USN-2739-1 September 10, 2015 freetype vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

0.2AI score
Exploits0
OpenVAS
OpenVAS
added 2015/04/01 12:0 a.m.42 views

CentOS Update for freetype CESA-2015:0696 centos7

Check the version of freetype SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882138";...

7.5CVSS7.6AI score0.0571EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2015/03/19 12:0 a.m.36 views

RedHat Update for freetype RHSA-2015:0696-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.0571EPSS
Exploits13References2
Cent OS
Cent OS
added 2015/03/18 6:53 p.m.307 views

freetype security update

CentOS Errata and Security Advisory CESA-2015:0696 Updated freetype packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...

7.5CVSS7.5AI score0.0571EPSS
Exploits13References7
securityvulns
securityvulns
added 2015/03/08 12:0 a.m.67 views

[USN-2510-1] FreeType vulnerabilities

========================================================================== Ubuntu Security Notice USN-2510-1 February 24, 2015 freetype vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives:...

7.5CVSS0.5AI score0.07687EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2015/03/08 12:0 a.m.34 views

FreeType: Multiple vulnerabilities

Background FreeType is a high-quality and portable font engine. Description Multiple vulnerabilities have been discovered in FreeType. Please review the CVE identifiers referenced below for details. Impact A remote attacker can cause Denial of Service. Workaround There is no known workaround at...

7.5CVSS8.2AI score0.07687EPSS
Exploits20
Ubuntu
Ubuntu
added 2015/02/24 7:33 p.m.72 views

USN-2510-1: FreeType vulnerabilities

Mateusz Jurczyk discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash or possibly execute arbitrary code with user privileges...

7.5CVSS7.4AI score0.07687EPSS
Exploits20
CNVD
CNVD
added 2015/02/09 12:0 a.m.1 views

FreeType 'tt_face_load_hdmx' Function Denial of Service Vulnerability

FreeType is the FreeType team developed a C-based , high-quality and portable open source font engine library , it can be used to rasterize the characters and mapped to bitmap and provide other font-related business support . A denial of service vulnerability exists in the FreeType 'ttfaceloadhdm...

7.5CVSS6.9AI score0.05059EPSS
Exploits1References1
CNVD
CNVD
added 2015/02/09 12:0 a.m.2 views

FreeType Denial of Service Vulnerability

FreeType is the FreeType team developed a C-based , high-quality and portable open source font engine library , it can be used to rasterize the characters and mapped to bitmap and provide other font-related business support . A denial of service vulnerability exists in FreeType that could allow a...

6.8CVSS6.9AI score0.04266EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2014/03/31 12:0 a.m.39 views

Microsoft Windows Embedded OpenType Font Engine LZCOMP Integer Overflow - Ver2 (CVE-2010-0018)

An integer overflow vulnerability has been reported in Microsoft Windows Embedded OpenType Font Engine. The vulnerability is due to insufficient validation while processing an EOT font. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the...

7.2AI score0.26523EPSS
Exploits0
securityvulns
securityvulns
added 2014/03/18 12:0 a.m.75 views

[USN-2148-1] FreeType vulnerabilities

========================================================================== Ubuntu Security Notice USN-2148-1 March 17, 2014 freetype vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.5CVSS0.5AI score0.06275EPSS
Exploits3
Ubuntu
Ubuntu
added 2014/03/17 11:42 a.m.51 views

USN-2148-1: FreeType vulnerabilities

Mateusz Jurczyk discovered that FreeType did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash or possibly execute arbitrary code with user privileges. CVE-2014-2240, CVE-2014-2241...

7.5CVSS6.5AI score0.06275EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.35 views

Oracle Linux 3 : freetype (ELSA-2010-0736)

From Red Hat Security Advisory 2010:0736 : Updated freetype packages that fix three security issues are now available for Red Hat Enterprise Linux 3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...

9.3CVSS6.3AI score0.06735EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.32 views

Oracle Linux 4 : freetype (ELSA-2011-1161)

From Red Hat Security Advisory 2011:1161 : Updated freetype packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...

9.3CVSS7.8AI score0.08355EPSS
Exploits0References2
Rows per page
Query Builder