Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-9670

Опубликовано: 08 фев. 2015
Источник: ubuntu
Приоритет: medium
CVSS2: 4.3

Описание

Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF file that specifies negative values for the first column and first row.

РелизСтатусПримечание
devel

released

2.5.2-2ubuntu3
esm-infra-legacy/trusty

released

2.5.2-1ubuntu2.4
lucid

released

2.3.11-1ubuntu2.8
precise

released

2.4.8-1ubuntu2.2
trusty

released

2.5.2-1ubuntu2.4
trusty/esm

released

2.5.2-1ubuntu2.4
upstream

released

2.5.4
utopic

released

2.5.2-2ubuntu1.1

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2014-9670

redhat
почти 11 лет назад

Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF file that specifies negative values for the first column and first row.

nvd логотип

CVE-2014-9670

nvd
больше 10 лет назад

Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF file that specifies negative values for the first column and first row.

debian логотип

CVE-2014-9670

debian
больше 10 лет назад

Multiple integer signedness errors in the pcf_get_encodings function i ...

github логотип

GHSA-vrhc-2m3r-v6qm

github
больше 3 лет назад

Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF file that specifies negative values for the first column and first row.

oracle-oval логотип

ELSA-2015-0696

oracle-oval
больше 10 лет назад

ELSA-2015-0696: freetype security update (IMPORTANT)

4.3 Medium

CVSS2