CVSS: 9.8EPSS: 3%CPEs: 62EXPL: 0CVE-2012-1139 – freetype: data buffer underflow in BDF parser _bdf_parse_glyphs() (#35656)
https://notcve.org/view.php?id=CVE-2012-1139
25 Apr 2012 — Array index error in FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid stack read operation and memory corruption) or possibly execute arbitrary code via crafted glyph data in a BDF font. Error de índice de matriz en FreeType antes de v2.4.9, tal como se utiliza en Mozilla Firefox Mobile antes de v10.0.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (operación no válida d... • http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 2%CPEs: 62EXPL: 0CVE-2012-1143 – freetype: integer divide by zero in FT_DivFix() (#35660)
https://notcve.org/view.php?id=CVE-2012-1143
25 Apr 2012 — FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted font. FreeType antes de v2.4.9, tal como se utiliza en Mozilla Firefox Mobile antes de v10.0.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (error de división por cero) a través de una fuente TrueType modificada. • http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html • CWE-189: Numeric Errors CWE-369: Divide By Zero •
CVSS: 9.8EPSS: 3%CPEs: 62EXPL: 0CVE-2012-1132 – freetype: heap buffer over-read in Type1 parser parse_subrs() (#35606)
https://notcve.org/view.php?id=CVE-2012-1132
25 Apr 2012 — FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via crafted dictionary data in a Type 1 font. FreeType antes de v2.4.9, tal como se utiliza en Mozilla Firefox Mobile antes de v10.0.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (operación no válida de escritura y corrupción de memoria) o posi... • http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •