CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-9290

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1690%
EPSS Percentile6.72th
Published2019年7月30日
Last Modified2024年11月21日

Vulnerability Description

In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.

Affected Platforms (CPE)

📦
Freetype

Freetype

< 2.6.1

References & Advisories

🔗 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1parse.c?id=e3058617f384cb6709f3878f753fa17aca9e3a30
🔗 https://lists.debian.org/debian-lts-announce/2019/08/msg00019.html
🔗 https://savannah.nongnu.org/bugs/?45923
🔗 https://support.f5.com/csp/article/K38315305
🔗 https://support.f5.com/csp/article/K38315305?utm_source=f5support&amp%3Butm_medium=RSS
🔗 http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1parse.c?id=e3058617f384cb6709f3878f753fa17aca9e3a30
🔗 https://lists.debian.org/debian-lts-announce/2019/08/msg00019.html
🔗 https://savannah.nongnu.org/bugs/?45923

相關漏洞威脅

CVE-2012-419010.0

The FT2FontEntry::CreateFontEntry function in FreeType, as used in the Android build of Mozilla Firefox before 16.0.1 on CyanogenM...

CVE-2014-317510.0

Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to cause a denial of service or possibly...

CVE-2012-112610.0

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a deni...

CVE-2014-97469.8

The (1) t1_parse_font_matrix function in type1/t1load.c, (2) cid_parse_font_matrix function in cid/cidload.c, (3) t42_parse_font_m...