13 matches found
Buffer Over-read
Freetype is vulnerable to buffer overread. It is due to mishandling of psparserskipPStoken in an FTNewMemoryFace operation in skipcomment, psaux/psobjs.c, leading to a buffer over-read...
CVE-2015-9382
FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation...
CVE-2015-9382
FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation...
CVE-2015-9382
FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation...
CVE-2015-9382
FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation...
CVE-2015-9382
FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation...
EulerOS 2.0 SP1 : freetype (EulerOS-SA-2017-1114)
According to the versions of the freetype packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1decoderparsecharstrings functi...
Heap Based Buffer Overflow
FreeType is vulnerable to out-of-bounds write issues. These writes are caused by a heap-based buffer overflow in the t1builderclosecontour function in psaux/psobjs.c. If a malformed font is supplied, it is possible that the contour variable is started but no points added, causing the buffer...
CVE-2017-8287
FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1builderclosecontour function in psaux/psobjs.c...
CVE-2017-8287
FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1builderclosecontour function in psaux/psobjs.c...
CVE-2017-8287
FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1builderclosecontour function in psaux/psobjs.c...
CVE-2017-8287
CVE-2017-8287 affects FreeType 2 up to 2.7.1, with an out-of-bounds write caused by a heap-based buffer overflow in psaux/psobjs.c:t1_builder_close_contour. This can enable remote code execution via malformed fonts. Advisories (e.g., Arch Linux ASA-201705-7/-10 and distro advisories) recommend up...
CVE-2014-9746
CVE-2014-9746 affects FreeType before 2.5.4. The functions t1_parse_font_matrix (type1/t1load.c), cid_parse_font_matrix (cid/cidload.c), t42_parse_font_matrix (type42/t42parse.c), and ps_parser_load_field (psaux/psobjs.c) do not check return values, enabling potential denial of service via uninit...