Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2010-08-19	CVE-2010-2498	Out-Of-Bounds Write vulnerability in multiple products The psh_glyph_find_strong_points function in pshinter/pshalgo.c in FreeType before 2.4.0 does not properly implement hinting masks, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a crafted font file that triggers an invalid free operation. network freetype canonical apple debian CWE-787	6.8
2010-08-19	CVE-2010-2497	Integer Underflow (Wrap OR Wraparound) vulnerability in multiple products Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. network freetype apple debian CWE-191	6.8
2006-05-30	CVE-2006-2661	Null Pointer Dereference vulnerability in multiple products ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a crafted font file that triggers a null dereference. network low complexity freetype debian canonical CWE-476	5.0
2006-05-23	CVE-2006-0747	Numeric Errors vulnerability in Freetype Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values. network low complexity freetype CWE-189	5.0