CVE-2015-9383

Опубликовано: 03 сент. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.

Релиз	Статус	Примечание
bionic	not-affected	2.8.1-2ubuntu2
devel	not-affected
disco	not-affected
esm-infra-legacy/trusty	released	2.5.2-1ubuntu2.8+esm1
esm-infra/bionic	not-affected	2.8.1-2ubuntu2
esm-infra/xenial	released	2.6.1-0.1ubuntu2.4
precise/esm	not-affected	2.4.8-1ubuntu2.7
trusty	ignored	end of standard support
trusty/esm	released	2.5.2-1ubuntu2.8+esm1
upstream	released	2.6.3-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 86%

0.02952

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2015-9383

CVSS3: 6.5

redhat

больше 6 лет назад

FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.

CVE-2015-9383

CVSS3: 6.5

nvd

больше 6 лет назад

FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.

CVE-2015-9383

CVSS3: 6.5

debian

больше 6 лет назад

FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_v ...

GHSA-5qxc-8vc2-mr95

CVSS3: 6.5

github

больше 3 лет назад

FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.

EPSS

Процентиль: 86%

0.02952

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2015-9383

Описание

Пакет freetype

Ссылки на источники

Связанные уязвимости