rpm package
suse/freetype2&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1
pkg:rpm/suse/freetype2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-15999 | — | KEV | < 2.10.1-4.8.1 | 2.10.1-4.8.1 | Nov 3, 2020 | Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2018-6942 | Med | 6.5 | < 2.10.1-4.3.1 | 2.10.1-4.3.1 | Feb 13, 2018 | An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file. |
- affected < 2.10.1-4.8.1fixed 2.10.1-4.8.1
Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- affected < 2.10.1-4.3.1fixed 2.10.1-4.3.1
An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.