6 matches found
K72372334: FreeType vulnerability CVE-2014-9745
Security Advisory Description The parseencoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service infinite loop via a "broken number-with-base" in a Postscript stream, as demonstrated by 8garbage. CVE-2014-9745 Impact A remote attacker may be...
SUSE SLES11 Security Update : freetype2 (SUSE-SU-2016:1149-1)
This update of the freetype2 library fixes two security issues : - An infinite loop in parseencoding in t1load.c CVE-2014-9745, bsc945849 - Use of uninitialized memory in psparserloadfield, t42parsefontmatrix and t1parsefontmatrix CVE-2014-9747, bsc947966 Note that Tenable Network Security has...
FreeType parse_encoding function denial of service vulnerability
FreeType is a library of popular font functions. A security vulnerability exists in the parseencoding function of type1/t1load.c in versions of FreeType prior to 2.5.3, which can be exploited by remote attackers to cause a denial of service infinite loop...
CVE-2014-9745
The parseencoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service infinite loop via a "broken number-with-base" in a Postscript stream, as demonstrated by 8garbage...
CVE-2014-9745
The parseencoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service infinite loop via a "broken number-with-base" in a Postscript stream, as demonstrated by 8garbage...
CVE-2014-9745
The parseencoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service infinite loop via a "broken number-with-base" in a Postscript stream, as demonstrated by 8garbage...