rpm package
suse/freetype2&distro=SUSE Linux Micro 6.1
pkg:rpm/suse/freetype2&distro=SUSE%20Linux%20Micro%206.1
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-23865 | Med | 5.3 | < 2.14.2-slfo.1.1_1.1 | 2.14.2-slfo.1.1_1.1 | Mar 2, 2026 | An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2. |
- affected < 2.14.2-slfo.1.1_1.1fixed 2.14.2-slfo.1.1_1.1
An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.