Search for packages
| purl | pkg:deb/debian/freetype@2.4.9-1.1%2Bdeb7u3 |
| Next non-vulnerable version | 2.12.1+dfsg-5+deb12u4 |
| Latest non-vulnerable version | 2.12.1+dfsg-5+deb12u4 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-17au-pc1k-m7at
Aliases: CVE-2014-9662 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-1ws8-ww77-ybah
Aliases: CVE-2014-9674 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-3jn7-t1f6-uyfr
Aliases: CVE-2014-9657 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-468g-dxsr-8yer
Aliases: CVE-2014-2240 |
A vulnerability in FreeType could result in execution of arbitrary code or Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-6xf8-49hw-hfaf
Aliases: CVE-2016-10244 |
Multiple vulnerabilities have been found in FreeType, the worst of which allows remote attackers to execute arbitrary code. |
Affected by 16 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-73d5-ezt5-87eh
Aliases: CVE-2014-9663 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-73e1-scax-8ugj
Aliases: CVE-2014-9675 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-a9r6-k8gp-nbfs
Aliases: CVE-2015-9383 |
freetype: a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c may lead to a DoS |
Affected by 6 other vulnerabilities. |
|
VCID-ask2-xeb7-7qbk
Aliases: CVE-2014-9671 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-b35u-t7u2-sudy
Aliases: CVE-2014-9746 |
security update |
Affected by 16 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-dcxj-zzfj-3bg7
Aliases: CVE-2022-27406 |
Multiple vulnerabilities have been discovered in FreeType, the worst of which can lead to remote code execution. |
Affected by 2 other vulnerabilities. |
|
VCID-fp2p-5ymf-wffj
Aliases: CVE-2014-9669 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-gtka-sbgw-tuf5
Aliases: CVE-2014-9665 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-hutw-rk7x-5bc3
Aliases: CVE-2014-9745 |
security update |
Affected by 16 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-jg4p-nv1j-fyb9
Aliases: CVE-2014-9670 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-jn9w-2axj-8ke5
Aliases: CVE-2014-9659 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-m8ha-zxb7-tyg6
Aliases: CVE-2017-8105 |
Multiple vulnerabilities have been found in FreeType, the worst of which allows remote attackers to execute arbitrary code. |
Affected by 16 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-nakp-vmxa-akey
Aliases: CVE-2014-9664 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-nfp7-sjcv-wkfv
Aliases: CVE-2014-9668 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-nn4w-gq71-kfgd
Aliases: CVE-2015-9290 |
freetype: buffer over-read in function T1_Get_Private_Dict in type1/t1parse.c |
Affected by 6 other vulnerabilities. |
|
VCID-nx21-ks3v-53e4
Aliases: CVE-2020-15999 GHSA-pv36-h7jh-qm62 |
Heap buffer overflow in CefSharp ### Impact A memory corruption bug(Heap overflow) in the FreeType font rendering library. > This can be exploited by attackers to execute arbitrary code by using specially crafted fonts with embedded PNG images . As per https://www.secpod.com/blog/chrome-zero-day-under-active-exploitation-patch-now/ Google is aware of reports that an exploit for CVE-2020-15999 exists in the wild. ### Patches Upgrade to 85.3.130 or higher ### References - https://www.secpod.com/blog/chrome-zero-day-under-active-exploitation-patch-now/ - https://www.zdnet.com/article/google-releases-chrome-security-update-to-patch-actively-exploited-zero-day/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999 - https://magpcss.org/ceforum/viewtopic.php?f=10&t=17942 To review the `CEF/Chromium` patch see https://bitbucket.org/chromiumembedded/cef/commits/cd6cbe008b127990036945fb75e7c2c1594ab10d |
Affected by 5 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-p2yw-ksc4-jfe9
Aliases: CVE-2014-9660 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-p8h9-9xku-hbhv
Aliases: CVE-2014-9666 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-pznp-81q7-z3d4
Aliases: CVE-2014-9658 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-s148-7tzs-gfg8
Aliases: CVE-2022-27405 |
Multiple vulnerabilities have been discovered in FreeType, the worst of which can lead to remote code execution. |
Affected by 2 other vulnerabilities. |
|
VCID-th47-m45d-m7dk
Aliases: CVE-2014-9667 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-tmb5-g2ua-ekek
Aliases: CVE-2014-2241 |
freetype: OOB stack-based read/write in cf2_hintmap_build() |
Affected by 16 other vulnerabilities. |
|
VCID-tsw4-kqbc-kqf1
Aliases: CVE-2015-9381 |
freetype: a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c leading to crash |
Affected by 6 other vulnerabilities. |
|
VCID-tu7r-tsp8-73ew
Aliases: CVE-2014-9673 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-u15r-u7zz-17ad
Aliases: CVE-2014-9672 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-uh3u-pzzg-fkgg
Aliases: CVE-2014-9661 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-uhnk-v91u-p7e5
Aliases: CVE-2014-9656 |
Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
Affected by 16 other vulnerabilities. |
|
VCID-uy24-k7je-pyhr
Aliases: CVE-2025-27363 |
A vulnerability has been discovered in FreeType, which can lead to remote code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-wr9p-x4sm-aqdh
Aliases: CVE-2017-8287 |
Multiple vulnerabilities have been found in FreeType, the worst of which allows remote attackers to execute arbitrary code. |
Affected by 16 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-xb9q-dk8j-fbch
Aliases: CVE-2022-27404 |
Multiple vulnerabilities have been discovered in FreeType, the worst of which can lead to remote code execution. |
Affected by 2 other vulnerabilities. |
|
VCID-y4qf-qfbv-mqdg
Aliases: CVE-2018-6942 |
freetype: NULL pointer dereference in the Ins_GETVARIATION() function |
Affected by 5 other vulnerabilities. |
|
VCID-ysfs-xxjz-vbep
Aliases: CVE-2015-9382 |
freetype: mishandling ps_parser_skip_PS_token in an FT_New_Memory_Face operation in skip_comment, psaux/psobjs.c, leads to a buffer over-read |
Affected by 6 other vulnerabilities. |
|
VCID-zpnw-kwqf-63bp
Aliases: CVE-2014-9747 |
security update |
Affected by 16 other vulnerabilities. Affected by 6 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1teu-tz69-dff8 | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1128
|
| VCID-1ws8-ww77-ybah | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9674
|
| VCID-2fsn-uxp3-fbeg | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1130
|
| VCID-38u1-6t8n-gqey | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1143
|
| VCID-3jn7-t1f6-uyfr | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9657
|
| VCID-5rpx-8t3t-syhv | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1139
|
| VCID-613j-8z2t-t3au | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1129
|
| VCID-6pzj-1sgf-zbbr | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1144
|
| VCID-6z8y-k8vw-nudd | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1142
|
| VCID-73d5-ezt5-87eh | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9663
|
| VCID-73e1-scax-8ugj | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9675
|
| VCID-79js-ywyp-x3au | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause a Denial of Service. |
CVE-2011-0226
|
| VCID-ask2-xeb7-7qbk | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9671
|
| VCID-b35u-t7u2-sudy | security update |
CVE-2014-9746
|
| VCID-d2v4-gm58-uyby | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1140
|
| VCID-edag-8pt8-jqdw | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1137
|
| VCID-ettc-tamy-kfcf | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1133
|
| VCID-ewj8-a9c8-w3dy | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1135
|
| VCID-fp2p-5ymf-wffj | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9669
|
| VCID-gcr7-xxtw-e3bs | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause a Denial of Service. |
CVE-2011-3256
|
| VCID-h7qy-dusf-tqb7 | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1141
|
| VCID-hgkz-p83z-ybfe | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1127
|
| VCID-hutw-rk7x-5bc3 | security update |
CVE-2014-9745
|
| VCID-jg4p-nv1j-fyb9 | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9670
|
| VCID-jwbe-5wmu-uqgp | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1131
|
| VCID-mv93-73qb-ekgt | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1132
|
| VCID-n99m-fgj7-y3bk | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1138
|
| VCID-nakp-vmxa-akey | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9664
|
| VCID-p2yw-ksc4-jfe9 | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9660
|
| VCID-p8h9-9xku-hbhv | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9666
|
| VCID-pznp-81q7-z3d4 | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9658
|
| VCID-qu13-pxwm-d3da | Multiple vulnerabilities have been found in FreeType, allowing context-dependent attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-5670
|
| VCID-s9u5-4nwv-vudq | Multiple vulnerabilities have been found in FreeType, allowing context-dependent attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-5669
|
| VCID-th47-m45d-m7dk | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9667
|
| VCID-tu7r-tsp8-73ew | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9673
|
| VCID-u15r-u7zz-17ad | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9672
|
| VCID-uh3u-pzzg-fkgg | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9661
|
| VCID-uhnk-v91u-p7e5 | Multiple vulnerabilities have been found in FreeType, possibly resulting in Denial of Service. |
CVE-2014-9656
|
| VCID-v6um-wgpt-myax | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause a Denial of Service. |
CVE-2011-3439
|
| VCID-wapu-grak-1bca | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1134
|
| VCID-xe45-fv7j-4ucr | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1126
|
| VCID-xyay-hhmw-cyb1 | Multiple vulnerabilities have been found in FreeType, allowing context-dependent attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-5668
|
| VCID-zpnw-kwqf-63bp | security update |
CVE-2014-9747
|
| VCID-zu7v-a14h-2ueu | Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. |
CVE-2012-1136
|