An integer overflow vulnerability was discovered in Freetype in
tt_hvadvance_adjust() function in src/truetype/ttgxvar.c.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | freetype | < 2.10.1-2ubuntu0.3 | UNKNOWN |
ubuntu | 22.04 | noarch | freetype | < 2.11.1+dfsg-1ubuntu0.2 | UNKNOWN |
ubuntu | upstream | noarch | freetype | < 2.12.1+dfsg-3ubuntu0.1 | UNKNOWN |
ubuntu | upstream | noarch | freetype | < 2.12.1+dfsg-4ubuntu0.1 | UNKNOWN |
ubuntu | upstream | noarch | freetype | < any | UNKNOWN |
access.redhat.com/security/cve/CVE-2023-2004
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2004
launchpad.net/bugs/cve/CVE-2023-2004
lists.fedoraproject.org/archives/list/[email protected]/message/NGWWGQULJ7QRNP4GY57HE7OO7VMRWMPN/
nvd.nist.gov/vuln/detail/CVE-2023-2004
security-tracker.debian.org/tracker/CVE-2023-2004
ubuntu.com/security/notices/USN-6062-1