Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-10328

Опубликовано: 14 апр. 2017
Источник: debian

Описание

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
freetypenot-affectedpackage

Примечания

  • Introduced with: https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=010e0614f2effe058855aacfc3e61c71e1cb5739

  • Fixed with http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=beecf80a6deecbaf5d264d4f864451bde4fe98b8

  • http://savannah.nongnu.org/bugs/?func=detailitem&item_id=49858

  • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=289

Связанные уязвимости

ubuntu логотип

CVE-2016-10328

CVSS3: 9.8
ubuntu
почти 9 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

redhat логотип

CVE-2016-10328

CVSS3: 7.8
redhat
около 9 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

nvd логотип

CVE-2016-10328

CVSS3: 9.8
nvd
почти 9 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

suse-cvrf логотип

SUSE-SU-2018:0837-1

suse-cvrf
почти 8 лет назад

Security update for freetype2

github логотип

GHSA-48h9-2rjq-qf7x

CVSS3: 9.8
github
больше 3 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.