Описание
Off-by-one error in the pcf_get_properties function in pcf/pcfread.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PCF file with a 0xffffffff size value that is improperly incremented.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.5.2-2ubuntu3 |
| esm-infra-legacy/trusty | not-affected | 2.5.2-1ubuntu2.4 |
| lucid | released | 2.3.11-1ubuntu2.8 |
| precise | released | 2.4.8-1ubuntu2.2 |
| trusty | released | 2.5.2-1ubuntu2.4 |
| trusty/esm | not-affected | 2.5.2-1ubuntu2.4 |
| upstream | released | 2.5.4 |
| utopic | released | 2.5.2-2ubuntu1.1 |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
Off-by-one error in the pcf_get_properties function in pcf/pcfread.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PCF file with a 0xffffffff size value that is improperly incremented.
Off-by-one error in the pcf_get_properties function in pcf/pcfread.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PCF file with a 0xffffffff size value that is improperly incremented.
Off-by-one error in the pcf_get_properties function in pcf/pcfread.c i ...
4.3 Medium
CVSS2