CVE-2016-10328

Опубликовано: 14 апр. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

Релиз	Статус	Примечание
devel	not-affected	2.6.3-3.2ubuntu1
esm-infra-legacy/trusty	released	2.5.2-1ubuntu2.7
esm-infra/xenial	released	2.6.1-0.1ubuntu2.2
precise	released	2.4.8-1ubuntu2.5
precise/esm	not-affected	2.4.8-1ubuntu2.5
trusty	released	2.5.2-1ubuntu2.7
trusty/esm	released	2.5.2-1ubuntu2.7
upstream	needs-triage
vivid/stable-phone-overlay	ignored	end of life
vivid/ubuntu-core	released	2.5.2-2ubuntu3.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 77%

0.01044

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2016-10328

CVSS3: 7.8

redhat

около 9 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

CVE-2016-10328

CVSS3: 9.8

nvd

почти 9 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

CVE-2016-10328

CVSS3: 9.8

debian

почти 9 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a he ...

SUSE-SU-2018:0837-1

suse-cvrf

почти 8 лет назад

Security update for freetype2

GHSA-48h9-2rjq-qf7x

CVSS3: 9.8

github

больше 3 лет назад

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.

EPSS

Процентиль: 77%

0.01044

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2016-10328

Описание

Пакет freetype

Ссылки на источники

Связанные уязвимости