Lucene search
K

7 matches found

Veracode
Veracode
added 2020/04/10 1:9 a.m.22 views

Arbitrary Code Execution

freetype is vulnerable to arbitrary code execution. The vulnerability exists as multiple flaws were found in the way FreeType handled TrueType Font TTF, Glyph Bitmap Distribution Format BDF, Windows .fnt and .fon, and PostScript Type 1 fonts. If a specially-crafted font file was loaded by an...

9.3CVSS1.9AI score0.04912EPSS
Exploits0References23Affected Software1
Veracode
Veracode
added 2019/10/17 12:22 a.m.38 views

Denial Of Service (DoS)

OpenJDK is vulnerable to denial of service DoS. The attack exists because it does not perform glyph bitmap image dimension check in FreetypeFontScaler...

3.7CVSS2.1AI score0.02929EPSS
Exploits0References18Affected Software4
Check Point Advisories
Check Point Advisories
added 2016/04/12 12:0 a.m.4 views

Microsoft Windows Graphics Memory Corruption (MS16-039: CVE-2016-0145)

A vulnerability was found in Microsoft Windows that could potentially lead to remote code execution. The main cause is the lack of validation on glyph bitmap boundary during scaling operation. This vulnerability can be exploited using a malformed font file TTF...

9.3CVSS8.5AI score0.43272EPSS
Exploits1
OSV
OSV
added 2014/01/21 4:17 p.m.5 views

MGASA-2014-0020 Updated libxfont packages fix security vulnerability

Updated libxfont packages fix security vulnerability: It was discovered that a buffer overflow in the processing of Glyph Bitmap Distribution fonts BDF could result in the execution of arbitrary code CVE-2013-6462...

9.3CVSS7.1AI score0.10254EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2014/01/07 12:0 a.m.11 views

Debian Security Advisory DSA 2838-1 (libxfont - buffer overflow)

It was discovered that a buffer overflow in the processing of Glyph Bitmap Distribution fonts BDF could result in the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb2838.nasl 6715 2017-07-13 09:57:40Z teissa $ Auto-generated from advisory DSA 2838-1 using nvtgen 1.0 Script versio...

9.3CVSS0.8AI score0.10254EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.32 views

Amazon Linux AMI : freetype (ALAS-2013-150)

A flaw was found in the way the FreeType font rendering engine processed certain Glyph Bitmap Distribution Format BDF fonts. If a user loaded a specially crafted font file with an application linked against FreeType, it could cause the application to crash or, possibly, execute arbitrary code wit...

4.3CVSS5.8AI score0.03857EPSS
Exploits0References2
Cent OS
Cent OS
added 2013/01/31 9:55 p.m.139 views

freetype security update

CentOS Errata and Security Advisory CESA-2013:0216 Updated freetype packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...

4.3CVSS6AI score0.03857EPSS
Exploits0References7
Rows per page
Query Builder