VYPR

rpm package

suse/freetype2&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1

pkg:rpm/suse/freetype2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1

Vulnerabilities (2)

  • CVE-2020-15999KEVNov 3, 2020
    affected < 2.10.1-4.8.1fixed 2.10.1-4.8.1

    Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-6942MedFeb 13, 2018
    affected < 2.10.1-4.3.1fixed 2.10.1-4.3.1

    An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.