VYPR

rpm package

opensuse/freetype2&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/freetype2&distro=openSUSE%20Tumbleweed

Vulnerabilities (63)

  • CVE-2010-2497Aug 19, 2010
    affected < 2.7-1.1fixed 2.7-1.1

    Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.

  • CVE-2009-0946Apr 17, 2009
    affected < 2.7-1.1fixed 2.7-1.1

    Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.

  • CVE-2007-1351Apr 6, 2007
    affected < 2.11.0-1.2fixed 2.11.0-1.2

    Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.

Page 4 of 4