Lucene search
Ubuntu.comUB:CVE-2006-3467HistoryJul 21, 2006 - 12:00 a.m.
CVE-2006-3467
2006-07-2100:00:00
ubuntu.com
ubuntu.com
8
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.168 Low
EPSS
Percentile
96.0%
Integer overflow in FreeType before 2.2 allows remote attackers to cause a
denial of service (crash) and possibly execute arbitrary code via a crafted
PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a
partial fix of CVE-2006-1861.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | freetype | < 2.1.10-1ubuntu2.4 | UNKNOWN |
| ubuntu | 6.10 | noarch | freetype | < 2.2.1-5ubuntu0.2 | UNKNOWN |
| ubuntu | 7.04 | noarch | freetype | < 2.2.1-5ubuntu1.1 | UNKNOWN |
| ubuntu | 7.10 | noarch | freetype | < 2.3.5-1ubuntu1 | UNKNOWN |
| ubuntu | 8.04 | noarch | freetype | < 2.3.5-1ubuntu1 | UNKNOWN |
| ubuntu | 8.10 | noarch | freetype | < 2.3.5-1ubuntu1 | UNKNOWN |
| ubuntu | 9.04 | noarch | freetype | < 2.3.5-1ubuntu1 | UNKNOWN |
| ubuntu | 9.10 | noarch | freetype | < 2.3.5-1ubuntu1 | UNKNOWN |
| ubuntu | 6.06 | noarch | ia32-libs | < 1.4ubuntu20 | UNKNOWN |
| ubuntu | 6.06 | noarch | libxfont | < 1.0.0-0ubuntu3.3 | UNKNOWN |
Related
cve
cve
nessus
nessus
openSUSE 10 Security Update : NX (NX-4555)
2007-10-18 00:00:00
Mandrake Linux Security Advisory : freetype2 (MDKSA-2006:129)
2006-12-16 00:00:00
debiancve
debiancve
CVE-2006-3467
2006-07-21 14:03:00
CVE-2006-1861
2006-05-23 10:06:00
freebsd
freebsd
freetype -- LWFN Files Buffer Overflow Vulnerability
2006-07-10 00:00:00
openvas
openvas
FreeBSD Ports: freetype2
2008-09-04 00:00:00
FreeBSD Ports: freetype2
2008-09-04 00:00:00
Slackware Advisory SSA:2006-207-02 x11
2012-09-11 00:00:00
redhat
redhat
(RHSA-2006:0500) freetype security update
2006-07-18 00:00:00
(RHSA-2006:0634) xorg-x11 security update
2006-08-21 00:00:00
(RHSA-2006:0635) XFree86 security update
2006-08-21 00:00:00
centos
centos
freetype security update
2006-07-18 12:29:16
freetype security update
2006-07-18 22:54:54
xorg security update
2006-08-24 00:39:55
debian
debian
[SECURITY] [DSA 1095-1] New freetype packages fix several vulnerabilities
2006-06-10 05:22:33
[SECURITY] [DSA 1193-1] New XFree86 packages fix several vulnerabilities
2006-10-09 16:58:41
gentoo
gentoo
FreeType: Multiple integer overflows
2006-07-09 00:00:00
NX 2.1: User-assisted execution of arbitrary code
2007-10-09 00:00:00
LibXfont: Multiple integer overflows
2006-09-06 00:00:00
slackware
slackware
[slackware-security] x11
2006-07-26 21:25:09
ubuntu
ubuntu
libxfont vulnerability
2006-09-07 00:00:00
freetype vulnerability
2006-07-28 00:00:00
FreeType vulnerabilities
2006-06-08 00:00:00
suse
suse
possible code execution in freetype2
2006-08-01 16:43:51
remote code execution in freetype2, freetype2-devel
2006-06-27 12:24:46
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:31:37
fedora
fedora
[SECURITY] Fedora 10 Update: freetype1-1.4-0.8.pre.fc10
2009-05-28 08:01:17
[SECURITY] Fedora 11 Update: freetype1-1.4-0.8.pre.fc11
2009-05-28 08:17:11
ubuntucve
ubuntucve
CVE-2006-1861
2006-05-23 00:00:00
prion
prion
Integer overflow
2006-05-23 10:06:00
oraclelinux
oraclelinux
Moderate: freetype security update
2007-04-16 00:00:00
Important: XFree86 security update
2007-03-22 00:00:00
freetype security update
2009-05-26 00:00:00
osv
osv
xfree86
2006-10-09 00:00:00
freetype - integer overflows
2006-06-10 00:00:00
securityvulns
securityvulns
VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1
2006-11-14 00:00:00
VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4
2006-11-14 00:00:00
VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2
2006-11-14 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.168 Low
EPSS
Percentile
96.0%
Related for UB:CVE-2006-3467