Vulnerabilities > Freetype > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-06-16 | CVE-2008-1808 | Numeric Errors vulnerability in Freetype Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer overflow. | 7.5 |
2008-06-16 | CVE-2008-1807 | Numeric Errors vulnerability in Freetype FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary (PFB) file, which triggers a free of arbitrary memory locations, leading to memory corruption. | 7.5 |
2008-06-16 | CVE-2008-1806 | Numeric Errors vulnerability in Freetype Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary (PFB) file, which triggers a heap-based buffer overflow. | 7.5 |
2007-07-02 | CVE-2007-3506 | Remote Buffer Overflow vulnerability in FreeType Bitmap Font Handling The ft_bitmap_assure_buffer function in src/base/ftbimap.c in FreeType 2.3.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors involving bitmap fonts, related to a "memory buffer overwrite bug." | 7.5 |