Freetype Freetype 2.7.0

CPE Details

Freetype Freetype 2.7.0
2.7.0
2021-01-26
11h33 +00:00
2021-01-26
11h33 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:freetype:freetype:2.7.0:*:*:*:*:*:*:*

Informations

Vendor

freetype

Product

freetype

Version

2.7.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-27404 2022-04-21 22h00 +00:00 FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
9.8
Critical
CVE-2022-27405 2022-04-21 22h00 +00:00 FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
7.5
High
CVE-2022-27406 2022-04-21 22h00 +00:00 FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.
7.5
High
CVE-2020-15999 2020-11-03 00h00 +00:00 Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
9.6
Critical
CVE-2018-6942 2018-02-13 04h00 +00:00 An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.
6.5
Medium
CVE-2017-8287 2017-04-26 22h00 +00:00 FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.
9.8
Critical
CVE-2017-8105 2017-04-24 16h00 +00:00 FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c.
9.8
Critical
CVE-2017-7857 2017-04-14 02h30 +00:00 FreeType 2 before 2017-03-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the TT_Get_MM_Var function in truetype/ttgxvar.c and the sfnt_init_face function in sfnt/sfobjs.c.
9.8
Critical
CVE-2017-7858 2017-04-14 02h30 +00:00 FreeType 2 before 2017-03-07 has an out-of-bounds write related to the TT_Get_MM_Var function in truetype/ttgxvar.c and the sfnt_init_face function in sfnt/sfobjs.c.
9.8
Critical
CVE-2017-7864 2017-04-14 02h30 +00:00 FreeType 2 before 2017-02-02 has an out-of-bounds write caused by a heap-based buffer overflow related to the tt_size_reset function in truetype/ttobjs.c.
9.8
Critical
CVE-2016-10244 2017-03-06 05h11 +00:00 The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted file.
7.8
High