exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 8

CVE-2014-9675

больше 10 лет назад

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

CVSS2: 5

EPSS: Низкий

CVE-2014-9675

больше 10 лет назад

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

CVSS2: 4.3

EPSS: Низкий

CVE-2014-9675

больше 10 лет назад

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

CVSS2: 5

EPSS: Низкий

CVE-2014-9675

больше 10 лет назад

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by onl ...

CVSS2: 5

EPSS: Низкий

GHSA-gp42-2rqf-vfq6

больше 3 лет назад

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

EPSS: Низкий

ELSA-2015-0696

больше 10 лет назад

ELSA-2015-0696: freetype security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2015:0463-1

больше 10 лет назад

Security update for freetype2

EPSS: Низкий

SUSE-SU-2015:0455-1

больше 10 лет назад

Security update for freetype2

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2014-9675 bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.	CVSS2: 5	1% Низкий	больше 10 лет назад
CVE-2014-9675 bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.	CVSS2: 4.3	1% Низкий	больше 10 лет назад
CVE-2014-9675 bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.	CVSS2: 5	1% Низкий	больше 10 лет назад
CVE-2014-9675 bdf/bdflib.c in FreeType before 2.5.4 identifies property names by onl ...	CVSS2: 5	1% Низкий	больше 10 лет назад
GHSA-gp42-2rqf-vfq6 bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.		1% Низкий	больше 3 лет назад
ELSA-2015-0696 ELSA-2015-0696: freetype security update (IMPORTANT)			больше 10 лет назад
SUSE-SU-2015:0463-1 Security update for freetype2			больше 10 лет назад
SUSE-SU-2015:0455-1 Security update for freetype2			больше 10 лет назад

Уязвимостей на страницу