rpm package
opensuse/ft2demos&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/ft2demos&distro=openSUSE%20Tumbleweed
Vulnerabilities (32)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-2240 | — | < 2.7-1.1 | 2.7-1.1 | Mar 12, 2014 | Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file. | ||
| CVE-2012-5670 | — | < 2.7-1.1 | 2.7-1.1 | Jan 24, 2013 | The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value. | ||
| CVE-2012-5669 | — | < 2.7-1.1 | 2.7-1.1 | Jan 24, 2013 | The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read. | ||
| CVE-2012-5668 | — | < 2.7-1.1 | 2.7-1.1 | Jan 24, 2013 | FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function. | ||
| CVE-2011-0226 | — | < 2.7-1.1 | 2.7-1.1 | Jul 19, 2011 | Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGraphics in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application cr | ||
| CVE-2010-3311 | — | < 2.7-1.1 | 2.7-1.1 | Jan 7, 2011 | Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a heap-bas | ||
| CVE-2010-3814 | — | < 2.7-1.1 | 2.7-1.1 | Nov 26, 2010 | Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, as demonstrated b | ||
| CVE-2010-3054 | — | < 2.7-1.1 | 2.7-1.1 | Aug 19, 2010 | Unspecified vulnerability in FreeType 2.3.9, and other versions before 2.4.2, allows remote attackers to cause a denial of service via vectors involving nested Standard Encoding Accented Character (aka seac) calls, related to psaux.h, cffgload.c, cffgload.h, and t1decode.c. | ||
| CVE-2010-3053 | — | < 2.7-1.1 | 2.7-1.1 | Aug 19, 2010 | bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string. | ||
| CVE-2010-2805 | — | < 2.7-1.1 | 2.7-1.1 | Aug 19, 2010 | The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. | ||
| CVE-2010-2497 | — | < 2.7-1.1 | 2.7-1.1 | Aug 19, 2010 | Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. | ||
| CVE-2009-0946 | — | < 2.7-1.1 | 2.7-1.1 | Apr 17, 2009 | Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c. |
- CVE-2014-2240Mar 12, 2014affected < 2.7-1.1fixed 2.7-1.1
Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.
- CVE-2012-5670Jan 24, 2013affected < 2.7-1.1fixed 2.7-1.1
The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.
- CVE-2012-5669Jan 24, 2013affected < 2.7-1.1fixed 2.7-1.1
The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read.
- CVE-2012-5668Jan 24, 2013affected < 2.7-1.1fixed 2.7-1.1
FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocation error" in the bdf_free_font function.
- CVE-2011-0226Jul 19, 2011affected < 2.7-1.1fixed 2.7-1.1
Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGraphics in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application cr
- CVE-2010-3311Jan 7, 2011affected < 2.7-1.1fixed 2.7-1.1
Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a heap-bas
- CVE-2010-3814Nov 26, 2010affected < 2.7-1.1fixed 2.7-1.1
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, as demonstrated b
- CVE-2010-3054Aug 19, 2010affected < 2.7-1.1fixed 2.7-1.1
Unspecified vulnerability in FreeType 2.3.9, and other versions before 2.4.2, allows remote attackers to cause a denial of service via vectors involving nested Standard Encoding Accented Character (aka seac) calls, related to psaux.h, cffgload.c, cffgload.h, and t1decode.c.
- CVE-2010-3053Aug 19, 2010affected < 2.7-1.1fixed 2.7-1.1
bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string.
- CVE-2010-2805Aug 19, 2010affected < 2.7-1.1fixed 2.7-1.1
The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
- CVE-2010-2497Aug 19, 2010affected < 2.7-1.1fixed 2.7-1.1
Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
- CVE-2009-0946Apr 17, 2009affected < 2.7-1.1fixed 2.7-1.1
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.
Page 2 of 2