CVE-2018-6942

Опубликовано: 27 янв. 2018

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	freetype	Will not fix
Red Hat Enterprise Linux 6	freetype	Will not fix
Red Hat Enterprise Linux 7	freetype	Will not fix
Red Hat Enterprise Linux 8	freetype	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=1544771freetype: NULL pointer dereference in the Ins_GETVARIATION() function

EPSS

Процентиль: 49%

0.00258

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-6942

CVSS3: 6.5

ubuntu

почти 8 лет назад

An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.

CVE-2018-6942

CVSS3: 6.5

nvd

почти 8 лет назад

An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.

CVE-2018-6942

CVSS3: 6.5

debian

почти 8 лет назад

An issue was discovered in FreeType 2 through 2.9. A NULL pointer dere ...

openSUSE-SU-2020:0704-1

suse-cvrf

больше 5 лет назад

Security update for freetype2

SUSE-SU-2020:1353-1

suse-cvrf

больше 5 лет назад

Security update for freetype2

EPSS

Процентиль: 49%

0.00258

Низкий

3.3 Low

CVSS3