CVE-2017-8287

Опубликовано: 27 апр. 2017

Источник: debian

EPSS Низкий

Описание

FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
freetype	fixed	2.6.3-3.2		package

Примечания

Fixed by: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=3774fc08b502c3e685afca098b6e8a195aded6a0

EPSS

Процентиль: 65%

0.00495

Низкий

Связанные уязвимости

CVE-2017-8287

CVSS3: 9.8

ubuntu

почти 9 лет назад

FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

CVE-2017-8287

CVSS3: 7

redhat

почти 9 лет назад

FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

CVE-2017-8287

CVSS3: 9.8

nvd

почти 9 лет назад

FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

GHSA-8m73-wffv-p6q9

CVSS3: 9.8

github

больше 3 лет назад

FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.

SUSE-SU-2018:0462-1

suse-cvrf

почти 8 лет назад

Security update for freetype2

EPSS

Процентиль: 65%

0.00495

Низкий