freetype: Information disclosure or denial of service via specially crafted font files

A flaw was found in Freetype. An integer overflow vulnerability exists when processing specially crafted OpenType variable fonts. A local attacker could exploit this by convincing a user to open a malicious font file, which may lead to an out-of-bounds read and potential information disclosure or...

EUVD-2026-13365

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an authenticated arbitrary file upload vulnerability in the Configurator module. An authenticated administrator can bypass intended file ty...

CVE-2026-29104

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an authenticated arbitrary file upload vulnerability in the Configurator module. An authenticated administrator can bypass intended file ty...

EUVD-2020-20437

Malware in sbrugna...

EUVD-2020-20436

Malware in sbrugna...

EUVD-2014-1893

Malware in sbrugna...

ROS-20250722-03

A vulnerability in the FreeType font rasterization library is related to reading outside buffer boundaries in memory. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code by sending a specially generated file of variant fonts...

RHEL 9 : freetype (RHSA-2025:3407)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:3407 advisory. FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs...

SUSE CVE-2024-12425

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that supports embedded font...

CVE-2024-12425

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that supports embedded font...

CVE-2023-27916

The affected application lacks proper validation of user-supplied data when parsing font files e.g., FNT. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process...

Design/Logic Flaw

The affected application lacks proper validation of user-supplied data when parsing font files e.g., FNT. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process...

CVE-2023-27916

CVE-2023-27916 affects Horner Automation Cscape and Cscape EnvisionRV. It is caused by improper validation of user-supplied data when parsing font files (e.g., FNT), which can lead to an out-of-bounds read and potentially allow arbitrary code execution in the current process. Mitigations from CIS...

PT-2023-2951 · Cscape · Cscape Envision Rv +1

Name of the Vulnerable Software and Affected Versions: Cscape EnvisionRV affected versions not specified Cscape affected versions not specified Description: The issue is related to a lack of proper validation of user-supplied data when parsing font files, such as FNT. This can lead to an...

USN-6062-1: FreeType vulnerability

It was discovered that FreeType incorrectly handled certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, or possibly execute arbitrary code...

SUSE CVE-2009-1100

Multiple unspecified vulnerabilities in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allow remote attackers to cause a denial of service disk consumption via vectors related to temporary font files and 1 "limits on Font...

PT-2022-21869 · Horner Automation · Cscape

Name of the Vulnerable Software and Affected Versions: Horner Automation's Cscape versions 9.90 SP 6 and prior Description: The issue arises from improper validation of user-supplied data. If a user opens a maliciously formed FNT file, an attacker could execute arbitrary code within the current...

OTFCC Heap Buffer Overflow Vulnerability (CNVD-2023-10591)

OTFCC is Caryll open source a C library and utility programs. Used to parse and write OpenType font files. OTFCC suffers from a heap buffer overflow vulnerability that originates from a boundary error in /release-x64/otfccdump+0x617087 when handling untrusted input. An attacker could exploit the...

OTFCC Buffer Overflow Vulnerability (CNVD-2023-11782)

OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files.OTFCC 0.10.4 and earlier versions have a buffer overflow vulnerability that originates in /release-x64/otfccdump 0x6b84b1 with a boundary error when processing untrusted input, which can be...

PT-2022-6682 · Horner Automation · Cscape

Name of the Vulnerable Software and Affected Versions: Horner Automation's Cscape versions 9.90 SP7 and prior Description: The issue is related to improper validation of user-supplied data, which can lead to a buffer overflow in memory. This can be exploited if a user opens a maliciously formed F...