VYPR
High severity7.8NVD Advisory· Published Mar 6, 2017· Updated Jun 17, 2026

CVE-2016-10244

CVE-2016-10244

Description

The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

24

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.