FreeType is vulnerable to denial of service. The vulnerability exists in FNT_Size_Request function due to a segment violation which allows an attacker to attempt access to a memory location in a way that could cause an application to halt or crash.

References

freetype.com

gitlab.freedesktop.org/freetype/freetype/-/issues/1139

lists.fedoraproject.org/archives/list/[email protected]/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/

lists.fedoraproject.org/archives/list/[email protected]/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/

lists.fedoraproject.org/archives/list/[email protected]/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/

lists.fedoraproject.org/archives/list/[email protected]/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/

lists.fedoraproject.org/archives/list/[email protected]/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/

secdb.alpinelinux.org/v3.15/main.yaml

redhatcve 1

ubuntucve 1

prion 1

alpinelinux 1

osv 8

cvelist 1

nvd 1

nessus 33

cbl_mariner 2

debiancve 1

ibm 3

cve 1

photon 3

fedora 5

openvas 20

qt 1

redhat 20

rosalinux 1

suse 1

almalinux 2

rocky 2

oraclelinux 2

mageia 1

amazon 1

ubuntu 1

cloudfoundry 1

gentoo 1

f5 1

ics 1

oracle 3

redhatcve

CVE-2022-27405

2022-04-22 19:36:28

ubuntucve

CVE-2022-27405

2022-04-22 00:00:00

prion

Design/Logic Flaw

2022-04-22 14:15:00

alpinelinux

CVE-2022-27405

2022-04-22 14:15:09

osv

Vulnerability: 3 vulnerabilities affecting GitOnBorg::android::platform::external::freetype

2023-07-01 00:00:00

CVE-2022-27405

2022-04-22 14:15:09

CGA-8wv4-f947-j25w

2024-06-06 12:25:18

cvelist

CVE-2022-27405

2022-04-22 00:00:00

nvd

CVE-2022-27405

2022-04-22 14:15:09

nessus

CBL Mariner 2.0 Security Update: freetype (CVE-2022-27405)

2023-03-28 00:00:00

Photon OS 3.0: Freetype2 PHSA-2022-3.0-0394

2024-07-24 00:00:00

EulerOS 2.0 SP9 : freetype (EulerOS-SA-2022-1964)

2022-07-08 00:00:00

cbl_mariner

CVE-2022-27405 affecting package freetype for versions less than 2.12.1-1

2022-08-31 06:17:54

CVE-2022-27405 affecting package freetype 2.11.1-2

2022-08-24 22:05:05

debiancve

CVE-2022-27405

2022-04-22 14:15:09

ibm

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance may be vulnerable to denial of service due to CVE-2022-27405

2022-12-01 16:50:32

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

2022-12-30 10:56:19

Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.

2023-02-02 03:37:14

cve

CVE-2022-27405

2022-04-22 14:15:09

photon

Important Photon OS Security Update - PHSA-2022-0394

2022-05-16 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0394

2022-05-16 00:00:00

Critical Photon OS Security Update - PHSA-2022-4.0-0183

2022-05-14 00:00:00

fedora

[SECURITY] Fedora 36 Update: freetype-2.12.1-1.fc36

2022-05-07 05:16:35

[SECURITY] Fedora 35 Update: freetype-2.11.0-6.fc35

2022-05-20 01:29:06

[SECURITY] Fedora 36 Update: mingw-freetype-2.12.1-1.fc36

2022-05-11 01:22:40

openvas

Fedora: Security Advisory for freetype (FEDORA-2022-5e45671294)

2022-05-21 00:00:00

Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2022-2379)

2022-09-26 00:00:00

Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2022-1964)

2022-07-08 00:00:00

Security advisory: FreeType in Qt

2022-07-27 00:00:00

redhat

(RHSA-2024:0420) Moderate: freetype security update

2024-01-24 14:40:27

(RHSA-2022:8340) Moderate: freetype security update

2022-11-15 06:21:54

(RHSA-2022:7745) Moderate: freetype security update

2022-11-08 06:27:55

rosalinux

Advisory ROSA-SA-2023-2212

2023-08-08 08:21:24

suse

Security update for freetype2 (moderate)

2022-09-12 00:00:00

almalinux

Moderate: freetype security update

2022-11-15 00:00:00

Moderate: freetype security update

2022-11-08 00:00:00

rocky

freetype security update

2022-11-15 06:21:54

freetype security update

2022-11-08 06:27:55

oraclelinux

freetype security update

2022-11-15 00:00:00

freetype security update

2022-11-22 00:00:00

mageia

Updated freetype2 packages fix security vulnerability

2022-05-15 13:06:40

amazon

Medium: freetype

2023-01-18 00:16:00

ubuntu

FreeType vulnerabilities

2022-07-20 00:00:00

cloudfoundry

USN-5528-1: FreeType vulnerabilities | Cloud Foundry

2022-08-26 00:00:00

gentoo

FreeType: Multiple Vulnerabilities

2024-02-03 00:00:00

K000141126: Multiple FreeType vulnerabilities

2024-09-19 00:00:00

ics

Siemens RUGGEDCOM APE1808 Product Family

2023-09-14 12:00:00

oracle

Oracle Critical Patch Update Advisory - January 2023

2023-01-17 00:00:00

Oracle Critical Patch Update Advisory - July 2023

2023-07-18 00:00:00

Oracle Critical Patch Update Advisory - April 2023

2023-04-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.003

Percentile

66.3%

JSON

Related for VERACODE:35610