Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2006-1861
HistoryMay 23, 2006 - 12:00 a.m.

CVE-2006-1861

2006-05-2300:00:00
ubuntu.com
ubuntu.com
8

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.137 Low

EPSS

Percentile

95.6%

JSON

Multiple integer overflows in FreeType before 2.2 allow remote attackers to
cause a denial of service (crash) and possibly execute arbitrary code via
attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3)
cff/cffgload.c, and (4) the read_lwfn function and a crafted LWFN file in
base/ftmac.c. NOTE: item 4 was originally identified by CVE-2006-2493.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchfreetype< 2.1.10-1ubuntu2.4UNKNOWN

Related

cve 4
prion 1
debiancve 2
debian 1
nessus 21
openvas 27
ubuntu 1
osv 1
gentoo 3
veracode 1
slackware 1
ubuntucve 1
fedora 2
suse 1
redhat 3
freebsd 1
oraclelinux 2
centos 3
cve
cve
CVE-2006-1861
2006-05-23 10:06:00
CVE-2006-2493
2006-05-20 03:02:00
CVE-2006-3467
2006-07-21 14:03:00
prion
prion
Integer overflow
2006-05-23 10:06:00
debiancve
debiancve
CVE-2006-1861
2006-05-23 10:06:00
CVE-2006-3467
2006-07-21 14:03:00
debian
debian
[SECURITY] [DSA 1095-1] New freetype packages fix several vulnerabilities
2006-06-10 05:22:33
nessus
nessus
Debian DSA-1095-1 : freetype - integer overflows
2006-10-14 00:00:00
openSUSE 10 Security Update : freetype2 (freetype2-1608)
2007-10-17 00:00:00
GLSA-200607-02 : FreeType: Multiple integer overflows
2006-07-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1095-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1095-1 (freetype)
2008-01-17 00:00:00
Ubuntu: Security Advisory (USN-291-1)
2022-08-26 00:00:00
ubuntu
ubuntu
FreeType vulnerabilities
2006-06-08 00:00:00
osv
osv
freetype - integer overflows
2006-06-10 00:00:00
gentoo
gentoo
FreeType: Multiple integer overflows
2006-07-09 00:00:00
NX 2.1: User-assisted execution of arbitrary code
2007-10-09 00:00:00
FreeType 1: User-assisted execution of arbitrary code
2010-06-01 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:31:37
slackware
slackware
[slackware-security] x11
2006-07-26 21:25:09
ubuntucve
ubuntucve
CVE-2006-3467
2006-07-21 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: freetype1-1.4-0.8.pre.fc10
2009-05-28 08:01:17
[SECURITY] Fedora 11 Update: freetype1-1.4-0.8.pre.fc11
2009-05-28 08:17:11
suse
suse
remote code execution in freetype2, freetype2-devel
2006-06-27 12:24:46
redhat
redhat
(RHSA-2009:1062) Important: freetype security update
2009-05-22 00:00:00
(RHSA-2006:0500) freetype security update
2006-07-18 00:00:00
(RHSA-2009:0329) Important: freetype security update
2009-05-22 00:00:00
freebsd
freebsd
freetype -- LWFN Files Buffer Overflow Vulnerability
2006-07-10 00:00:00
oraclelinux
oraclelinux
Moderate: freetype security update
2007-04-16 00:00:00
freetype security update
2009-05-26 00:00:00
centos
centos
freetype security update
2006-07-18 22:54:54
freetype security update
2006-07-18 12:29:16
freetype security update
2009-05-22 14:02:05

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.137 Low

EPSS

Percentile

95.6%

JSON
Related for UB:CVE-2006-1861
cve4prion1debiancve2debian1nessus21openvas27ubuntu1osv1gentoo3veracode1slackware1ubuntucve1fedora2suse1redhat3freebsd1oraclelinux2centos3