Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-1126
HistoryMar 07, 2012 - 12:00 a.m.

CVE-2012-1126

2012-03-0700:00:00
ubuntu.com
ubuntu.com
18

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.35

Percentile

97.2%

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and
other products, allows remote attackers to cause a denial of service
(invalid heap read operation and memory corruption) or possibly execute
arbitrary code via crafted property data in a BDF font.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchfreetype< 2.3.5-1ubuntu4.8.04.9UNKNOWN
ubuntu10.04noarchfreetype< 2.3.11-1ubuntu2.6UNKNOWN
ubuntu10.10noarchfreetype< 2.4.2-2ubuntu0.4UNKNOWN
ubuntu11.04noarchfreetype< 2.4.4-1ubuntu2.3UNKNOWN
ubuntu11.10noarchfreetype< 2.4.4-2ubuntu1.2UNKNOWN

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.35

Percentile

97.2%