CVSS: 9.8EPSS: 5%CPEs: 62EXPL: 0CVE-2012-1136 – freetype: uninitialized pointer use in BDF parser _bdf_parse_glyphs() (#35641)
https://notcve.org/view.php?id=CVE-2012-1136
09 Mar 2012 — FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap write operation and memory corruption) or possibly execute arbitrary code via crafted glyph or bitmap data in a BDF font that lacks an ENCODING field. FreeType antes de v2.4.9, tal como se utiliza en Mozilla Firefox Mobile antes de v10.0.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (operación no válida de escritura... • http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 9.8EPSS: 5%CPEs: 62EXPL: 0CVE-2012-1142 – freetype: incorrect computation of number of glyphs in FNT_Face_Init() for FNT/FON files (#35659)
https://notcve.org/view.php?id=CVE-2012-1142
09 Mar 2012 — FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap write operation and memory corruption) or possibly execute arbitrary code via crafted glyph-outline data in a font. FreeType antes de v2.4.9, tal como se utiliza en Mozilla Firefox Mobile antes de v10.0.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (operación no válida de escritura y corrupción de memoria) o posible... • http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 3%CPEs: 62EXPL: 0CVE-2012-1144 – freetype: insufficient checking of first outline point in TTF parser (#35689)
https://notcve.org/view.php?id=CVE-2012-1144
09 Mar 2012 — FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap write operation and memory corruption) or possibly execute arbitrary code via a crafted TrueType font. FreeType antes de v2.4.9, tal como se utiliza en Mozilla Firefox Mobile antes de v10.0.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (operación no válida de escritura y corrupción de memoria) o posiblemente ejecuta... • http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 8%CPEs: 58EXPL: 0CVE-2011-0226 – freetype: postscript type1 font parsing vulnerability
https://notcve.org/view.php?id=CVE-2011-0226
18 Jul 2011 — Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGraphics in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Type 1 font in a PDF document, as exploited in the wild in July 2011. Error de entero sin signo en psaux/t1decode.c en FreeType anterior a v2.4.6, es usado enCoreGraphics en Apple iOS anterior a v4.2.9 y v4.3.x an... • http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 5%CPEs: 33EXPL: 0CVE-2010-3814 – Mandriva Linux Security Advisory 2010-236
https://notcve.org/view.php?id=CVE-2010-3814
05 Nov 2010 — Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, as demonstrated by a PDF document with a crafted embedded font. Desbordamiento de búfer basado en memoria dinámica en la función Ins_SHZ en ttinterp.c en FreeType v2.4.3 y anteriores permite a atacantes remotos ejecutar código a su o elección y caus... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602221 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 7%CPEs: 32EXPL: 0CVE-2010-3855 – Freetype : Heap based buffer overflow in ft_var_readpackedpoints()
https://notcve.org/view.php?id=CVE-2010-3855
05 Nov 2010 — Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font. Desbordamiento de búfer en la función ft_var_readpackedpoints en truetype/ttgxvar.c en FreeType v2.4.3 y anteriores permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente ejecutar código arbitrario a través de una fuen... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602221 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 9.3EPSS: 4%CPEs: 29EXPL: 0CVE-2010-3311 – freetype: Input stream position error by processing Compact Font Format (CFF) font files
https://notcve.org/view.php?id=CVE-2010-3311
05 Oct 2010 — Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a heap-based buffer overflow, related to an "input stream position error" issue, a different vulnerability than CVE-2010-1797. Desbordamiento de enteros en base/ftstream.c en libXft (también conocida como la librería FreeType X) en FreeType a... • http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 5.5EPSS: 1%CPEs: 30EXPL: 0CVE-2010-3053 – Debian Linux Security Advisory 2105-1
https://notcve.org/view.php?id=CVE-2010-3053
19 Aug 2010 — bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string. bdf/bdflib.c en FreeType en versiones anteriores a la 2.4.2 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) mediante una fichero de fuentes BDF modificado, relacionado con un intento de modificación de un valor en una cadena estática. The FT_Stream_EnterFrame fun... • http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 3%CPEs: 6EXPL: 0CVE-2010-2541 – Freetype ftmulti buffer overflow
https://notcve.org/view.php?id=CVE-2010-2541
17 Aug 2010 — Buffer overflow in ftmulti.c in the ftmulti demo program in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. Desbordamiento de búfer en ftmulti.c en el programa ftmulti demo en FreeType anterior a v2.4.2 permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente ejecutar código de su elección a través de un fichero fuente manipulado. It was discovered that FreeT... • http://freetype.sourceforge.net/index2.html#release-freetype-2.4.2 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 5%CPEs: 9EXPL: 1CVE-2010-2805 – freetype: FT_Stream_EnterFrame() does not properly validate certain position values
https://notcve.org/view.php?id=CVE-2010-2805
17 Aug 2010 — The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. La función FT_Stream_EnterFrame en base/ftstream.c de FreeType anterior a v2.4.2 no valida adecuadamente los valores de cierta posición, lo cual permite a atacantes remotos causar una denegación de servicio (fallo de la aplicación) o posibleme... • http://freetype.sourceforge.net/index2.html#release-freetype-2.4.2 • CWE-20: Improper Input Validation •