Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24941
HistoryApr 10, 2020 - 1:09 a.m.

Arbitrary Code Execution

2020-04-1001:09:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
freetype
arbitrary code execution
font handling
vulnerability
software

EPSS

0.063

Percentile

93.7%

freetype is vulnerable to arbitrary code execution. The vulnerability exists through multiple flaws were found in the way FreeType handled fonts in various formats. If a specially-crafted font file was loaded by an application linked against FreeType, it could cause the application to crash.

References