freetype: integer overflowin in tt_hvadvance_adjust() in src/truetype/ttgxvar.c

An integer overflow vulnerability was discovered in Freetype in tthvadvanceadjust function in src/truetype/ttgxvar.c. This flaw causes an application to crash or leads to a denial of service...

freetype: integer overflowin in tt_hvadvance_adjust() in src/truetype/ttgxvar.c

An integer overflow vulnerability was discovered in Freetype in tthvadvanceadjust function in src/truetype/ttgxvar.c. This flaw causes an application to crash or leads to a denial of service...

CVE-2023-2004

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

PT-2023-17404 · Freetype +3 · Freetype +3

Name of the Vulnerable Software and Affected Versions: Freetype affected versions not specified Description: An integer overflow issue was discovered in the tt hvadvance adjust function in src/truetype/ttgxvar.c. Recommendations: At the moment, there is no information about a newer version that...

Arbtirary Code Execution

freetype is vulnerable to arbitrary code execution. An out-of-bounds write resulting in a heap-based buffer overflow in the TTGetMMVar function in truetype/ttgxvar.c and sfntinitface function in sfnt/sfobjs.c allows an attacker to execute arbitrary code on the host OS...