Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24931
HistoryApr 10, 2020 - 1:09 a.m.

Arbitrary Code Execution

2020-04-1001:09:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
vulnerability
freetype
fonts
crash
software

EPSS

0.35

Percentile

97.2%

freetype is vulnerable to arbitrary code execution. The vulnerability exists through multiple flaws found in the way FreeType handled fonts in various formats. If a specially-crafted font file was loaded by an application linked against FreeType, it could cause the application to crash.

References