Unrated severityNVD Advisory· Published Jul 30, 2019· Updated Aug 6, 2024
CVE-2015-9290
CVE-2015-9290
Description
In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FreeType/FreeTypedescription
Patches
Vulnerability mechanics
References
5- git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1parse.cmitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2019/08/msg00019.htmlmitremailing-listx_refsource_MLIST
- savannah.nongnu.org/bugs/mitrex_refsource_MISC
- support.f5.com/csp/article/K38315305mitrex_refsource_CONFIRM
- support.f5.com/csp/article/K38315305mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.