rpm package
opensuse/freetype2&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/freetype2&distro=openSUSE%20Tumbleweed
Vulnerabilities (63)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2010-2497 | — | < 2.7-1.1 | 2.7-1.1 | Aug 19, 2010 | Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. | ||
| CVE-2009-0946 | — | < 2.7-1.1 | 2.7-1.1 | Apr 17, 2009 | Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c. | ||
| CVE-2007-1351 | — | < 2.11.0-1.2 | 2.11.0-1.2 | Apr 6, 2007 | Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow. |
- CVE-2010-2497Aug 19, 2010affected < 2.7-1.1fixed 2.7-1.1
Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
- CVE-2009-0946Apr 17, 2009affected < 2.7-1.1fixed 2.7-1.1
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.
- CVE-2007-1351Apr 6, 2007affected < 2.11.0-1.2fixed 2.11.0-1.2
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.
Page 4 of 4