Lucene search
+L

46 matches found

prion
prion
added 2010/08/19 6:0 p.m.21 views

Buffer overflow

Buffer overflow in the MacReadPOSTResource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted LaserWriter PS font file with an embedded PFB fragment...

6.8CVSS8.6AI score0.06194EPSS
Exploits1References16Affected Software4
cvelist
cvelist
added 2010/08/19 5:43 p.m.23 views

CVE-2010-2499

Buffer overflow in the MacReadPOSTResource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted LaserWriter PS font file with an embedded PFB fragment...

9.8AI score0.06194EPSS
Exploits1References16
ubuntucve
ubuntucve
added 2010/07/20 12:0 a.m.28 views

CVE-2010-2499

Buffer overflow in the MacReadPOSTResource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted LaserWriter PS font file with an embedded PFB fragment...

6.8CVSS6.2AI score0.06194EPSS
Exploits1References2
nessus
nessus
added 2009/04/23 12:0 a.m.40 views

Mandriva Linux Security Advisory : freetype2 (MDVSA-2008:121)

Multiple vulnerabilities were discovered in FreeType's Printer Font Binary PFB font-file format parser. If a user were to load a carefully crafted font file with a program linked against FreeType, it could cause the application to crash or potentially execute arbitrary code CVE-2008-1806,...

7.5CVSS6.5AI score0.04217EPSS
Exploits1References3
openvas
openvas
added 2009/04/09 12:0 a.m.30 views

Mandriva Update for freetype2 MDVSA-2008:121 (freetype2)

Check for the Version of freetype2 OpenVAS Vulnerability Test Mandriva Update for freetype2 MDVSA-2008:121 freetype2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

7.5CVSS6.9AI score0.04217EPSS
Exploits1References2
openvas
openvas
added 2009/03/06 12:0 a.m.32 views

RedHat Update for freetype RHSA-2008:0556-01

Check for the Version of freetype OpenVAS Vulnerability Test RedHat Update for freetype RHSA-2008:0556-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS0.1AI score0.04217EPSS
Exploits1References2
openvas
openvas
added 2009/03/06 12:0 a.m.32 views

RedHat Update for freetype RHSA-2008:0558-01

Check for the Version of freetype OpenVAS Vulnerability Test RedHat Update for freetype RHSA-2008:0558-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS0.1AI score0.04217EPSS
Exploits1References2
openvas
openvas
added 2008/09/17 12:0 a.m.23 views

Debian: Security Advisory (DSA-1635-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.04217EPSS
Exploits1References3
ubuntu
ubuntu
added 2008/09/11 9:57 p.m.65 views

USN-643-1: FreeType vulnerabilities

Multiple flaws were discovered in the PFB and TTF font handling code in freetype. If a user were tricked into using a specially crafted font file, a remote attacker could execute arbitrary code with user privileges or cause the application linked against freetype to crash, leading to a denial of...

7.5CVSS7.1AI score0.04217EPSS
Exploits1
osv
osv
added 2008/09/10 12:0 a.m.32 views

DSA-1635-1 freetype - multiple vulnerabilities

Bulletin has no description...

7.5CVSS6.8AI score0.04217EPSS
Exploits1
nessus
nessus
added 2008/07/08 12:0 a.m.52 views

FreeBSD : FreeType 2 -- Multiple Vulnerabilities (4fb43b2f-46a9-11dd-9d38-00163e000016)

Secunia reports : - An integer overflow error exists in the processing of PFB font files. This can be exploited to cause a heap-based buffer overflow via a PFB file containing a specially crafted 'Private' dictionary table. - An error in the processing of PFB font files can be exploited to trigge...

7.5CVSS6.9AI score0.04217EPSS
Exploits1References5
nessus
nessus
added 2008/06/24 12:0 a.m.35 views

GLSA-200806-10 : FreeType: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200806-10 FreeType: User-assisted execution of arbitrary code Regenrecht reported multiple vulnerabilities in FreeType via iDefense: An integer overflow when parsing values in the Private dictionary table in a PFB file, leading to...

7.5CVSS7.4AI score0.04217EPSS
Exploits1References4
centos
centos
added 2008/06/20 3:5 p.m.67 views

freetype security update

CentOS Errata and Security Advisory CESA-2008:0556 Updated freetype packages that fix various security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 25th June 2008 Th...

7.5CVSS6.9AI score0.04217EPSS
Exploits1References9
redhat
redhat
added 2008/06/20 11:58 a.m.7 views

FreeType off-by-one flaws

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

7.5CVSS7.3AI score0.04217EPSS
Exploits1References4
prion
prion
added 2008/06/16 7:41 p.m.29 views

Integer overflow

Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...

7.5CVSS7.7AI score0.0407EPSS
Exploits0References56Affected Software1
osv
osv
added 2008/06/16 7:41 p.m.2 views

DEBIAN-CVE-2008-1807

FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary PFB file, which triggers a free of arbitrary memory locations, leading to memory corruption...

7.5CVSS7.1AI score0.03585EPSS
Exploits0References1
nvd
nvd
added 2008/06/16 7:41 p.m.25 views

CVE-2008-1808

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

7.5CVSS7.1AI score0.04217EPSS
Exploits1References59
ubuntucve
ubuntucve
added 2008/06/16 7:41 p.m.40 views

CVE-2008-1808

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

7.5CVSS7.3AI score0.04217EPSS
Exploits1References2
ubuntucve
ubuntucve
added 2008/06/16 7:41 p.m.29 views

CVE-2008-1807

FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary PFB file, which triggers a free of arbitrary memory locations, leading to memory corruption...

7.5CVSS6.8AI score0.03585EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2008/06/16 7:41 p.m.36 views

CVE-2008-1806

Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...

7.5CVSS7.3AI score0.0407EPSS
Exploits0References2
Rows per page
Query Builder