CVE-2015-9382

Опубликовано: 03 сент. 2019

Источник: debian

Описание

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
freetype	fixed	2.6.1-0.1		package

Примечания

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/psaux/psobjs.c?id=db5a4a9ae7b0048f033361744421da8569642f73
https://savannah.nongnu.org/bugs/?45922

Связанные уязвимости

CVE-2015-9382

CVSS3: 6.5

ubuntu

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

CVE-2015-9382

CVSS3: 4.3

redhat

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

CVE-2015-9382

CVSS3: 6.5

nvd

больше 6 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

GHSA-mvvp-jc53-vjxq

CVSS3: 6.5

github

больше 3 лет назад

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

ELSA-2019-4254

oracle-oval

около 6 лет назад

ELSA-2019-4254: freetype security update (MODERATE)