Описание
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2.1.10-1ubuntu2.7 |
| devel | not-affected | 2.4.0-2 |
| hardy | released | 2.3.5-1ubuntu4.8.04.3 |
| jaunty | released | 2.3.9-4ubuntu0.2 |
| karmic | released | 2.3.9-5ubuntu0.1 |
| lucid | released | 2.3.11-1ubuntu2.1 |
| upstream | released | 2.4.0 |
Показывать по
5.1 Medium
CVSS2
Связанные уязвимости
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinter ...
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
5.1 Medium
CVSS2