Search for packages
| purl | pkg:deb/ubuntu/freetype@2.6.1-0.1ubuntu2.3 |
| Next non-vulnerable version | 2.10.1-2ubuntu0.1 |
| Latest non-vulnerable version | 2.10.1-2ubuntu0.1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-13zd-edqz-aaaf
Aliases: CVE-2015-9290 |
In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again. |
Affected by 1 other vulnerability. |
|
VCID-9zes-c5mb-aaaj
Aliases: CVE-2020-15999 GHSA-pv36-h7jh-qm62 |
Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
Affected by 0 other vulnerabilities. |
|
VCID-cpmd-zxd4-aaag
Aliases: CVE-2015-9382 |
FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation. |
Affected by 1 other vulnerability. |
|
VCID-fx3b-852a-aaag
Aliases: CVE-2015-9381 |
FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c. |
Affected by 1 other vulnerability. |
|
VCID-wyjf-w4nz-aaaa
Aliases: CVE-2015-9383 |
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1ar5-kcnv-aaar | FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c. |
CVE-2017-8287
|
| VCID-8mu3-snkb-aaam | FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c. |
CVE-2017-8105
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|