Описание
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | freetype | Not affected | ||
| Red Hat Enterprise Linux 6 | chromium-browser | Not affected | ||
| Red Hat Enterprise Linux 6 | firefox | Not affected | ||
| Red Hat Enterprise Linux 6 | freetype | Will not fix | ||
| Red Hat Enterprise Linux 6 | thunderbird | Not affected | ||
| Red Hat Enterprise Linux 7 | freetype | Not affected | ||
| Red Hat Enterprise Linux 8 | freetype | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=1763613freetype: a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c may lead to a DoS
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 6 лет назад
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.
CVSS3: 6.5
nvd
больше 6 лет назад
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.
CVSS3: 6.5
debian
больше 6 лет назад
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_v ...
CVSS3: 6.5
github
больше 3 лет назад
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.
6.5 Medium
CVSS3