Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:10984
HistoryJan 15, 2019 - 8:55 a.m.

Denial Of Service (Dos)

2019-01-1508:55:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

freetype is vulnerable to denial of service. This is due to an out-of-bounds read when the rendering engine processes certain Glyph Bitmap Distribution Format (BDF) fonts. An attacker is able to crash a user’s application, or potentially execute arbitrary code, via a malicious font file that is loaded into the victim’s application.

Related

nessus 18
prion 1
fedora 2
f5 2
centos 1
openvas 18
redhat 1
debiancve 1
amazon 1
ubuntucve 1
cve 1
debian 1
securityvulns 2
slackware 1
ubuntu 1
gentoo 1
oraclelinux 2
nessus
nessus
F5 Networks BIG-IP : BDF parsing vulnerability (K15095307)
2016-02-03 00:00:00
CentOS 5 / 6 : freetype (CESA-2013:0216)
2013-02-01 00:00:00
Scientific Linux Security Update : freetype on SL5.x, SL6.x i386/x86_64 (20130131)
2013-02-04 00:00:00
prion
prion
Out-of-bounds
2013-01-24 21:55:00
fedora
fedora
[SECURITY] Fedora 17 Update: freetype-2.4.8-4.fc17
2013-02-12 05:14:15
[SECURITY] Fedora 18 Update: freetype-2.4.10-3.fc18
2013-02-05 02:57:50
f5
f5
SOL15095307 - BDF parsing vulnerability CVE-2012-5669
2016-02-01 00:00:00
K15095307 : BDF parsing vulnerability CVE-2012-5669
2016-02-02 00:00:00
centos
centos
freetype security update
2013-01-31 21:55:44
openvas
openvas
CentOS Update for freetype CESA-2013:0216 centos5
2013-02-04 00:00:00
Fedora Update for freetype FEDORA-2013-1466
2013-02-15 00:00:00
RedHat Update for freetype RHSA-2013:0216-01
2013-02-04 00:00:00
redhat
redhat
(RHSA-2013:0216) Important: freetype security update
2013-01-31 00:00:00
debiancve
debiancve
CVE-2012-5669
2013-01-24 21:55:00
amazon
amazon
Important: freetype
2013-02-03 12:34:00
ubuntucve
ubuntucve
CVE-2012-5669
2012-12-31 00:00:00
cve
cve
CVE-2012-5669
2013-01-24 21:55:00
debian
debian
[BSA-078] Security Update for freetype
2013-01-09 06:28:35
securityvulns
securityvulns
FreeType security vulnerabilities
2013-01-14 00:00:00
[USN-1686-1] FreeType vulnerabilities
2013-01-14 00:00:00
slackware
slackware
freetype
2013-01-15 20:21:38
ubuntu
ubuntu
FreeType vulnerabilities
2013-01-14 00:00:00
gentoo
gentoo
FreeType: Multiple vulnerabilities
2014-02-11 00:00:00
oraclelinux
oraclelinux
freetype security update
2013-01-31 00:00:00
freetype security update
2015-03-17 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON
Related for VERACODE:10984
nessus18prion1fedora2f52centos1openvas18redhat1debiancve1amazon1ubuntucve1cve1debian1securityvulns2slackware1ubuntu1gentoo1oraclelinux2