Vulnerabilities > Freetype

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-10	CVE-2025-23022	Integer Overflow or Wraparound vulnerability in Freetype 2.8.1 FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c. local low complexity freetype CWE-190	6.2
2022-04-22	CVE-2022-27404	Out-of-bounds Write vulnerability in multiple products FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face. network low complexity freetype fedoraproject CWE-787 critical	9.8
2022-04-22	CVE-2022-27405	Out-of-bounds Read vulnerability in multiple products FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request. network low complexity freetype fedoraproject CWE-125	7.5
2022-04-22	CVE-2022-27406	Out-of-bounds Read vulnerability in multiple products FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size. network low complexity freetype fedoraproject CWE-125	7.5
2020-11-03	CVE-2020-15999	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google freetype debian fedoraproject opensuse netapp CWE-787 critical	9.6
2019-09-03	CVE-2015-9383	Out-of-bounds Read vulnerability in multiple products FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c. network low complexity freetype debian canonical CWE-125	6.5
2019-09-03	CVE-2015-9382	Out-of-bounds Read vulnerability in multiple products FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation. network low complexity freetype debian CWE-125	6.5
2019-09-03	CVE-2015-9381	Out-of-bounds Read vulnerability in multiple products FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c. network low complexity freetype debian CWE-125	8.8
2019-07-30	CVE-2015-9290	Out-of-bounds Read vulnerability in Freetype In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again. network low complexity freetype CWE-125 critical	9.8
2018-02-13	CVE-2018-6942	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in FreeType 2 through 2.9. network low complexity freetype canonical CWE-476	6.5

Vulnerabilities > Freetype {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Freetype"}]}

Vulnerabilities > Freetype