Lucene search

F5F5:K000133070

HistoryMar 20, 2023 - 12:00 a.m.

K000133070 : Freetype vulnerability CVE-2020-15999

2023-03-2000:00:00

my.f5.com

freetype

cve-2020-15999

heap-based buffer overflow

load_sbit_png

f5os

library

7.6 High

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

JSON

Security Advisory Description

Freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png. (CVE-2020-15999)

Impact

Certain library in F5OS requires the use of the vulnerable component. However, there is no known way to exploit this vulnerability on F5OS in default, standard, or recommended configurations.

CPENameOperatorVersion
f5 ssl orchestratoreq14.1.0
f5 ssl orchestratoreq14.1.2
f5 ssl orchestratoreq14.1.4
f5 ssl orchestratoreq15.1.0
f5 ssl orchestratoreq15.1.1
f5 ssl orchestratoreq16.1.0
f5 ssl orchestratoreq16.1.1
f5 ssl orchestratoreq16.1.2
f5 ssl orchestratoreq16.1.3
f5 ssl orchestratoreq17.0.0

Name	Operator	Version
f5 ssl orchestrator	eq	14.1.0
f5 ssl orchestrator	eq	14.1.2
f5 ssl orchestrator	eq	14.1.4
f5 ssl orchestrator	eq	15.1.0
f5 ssl orchestrator	eq	15.1.1
f5 ssl orchestrator	eq	16.1.0
f5 ssl orchestrator	eq	16.1.1
f5 ssl orchestrator	eq	16.1.2
f5 ssl orchestrator	eq	16.1.3
f5 ssl orchestrator	eq	17.0.0

Rows per page:

1-10 of 4151

nessus

FreeBSD : freetype2 -- heap buffer overlfow (458df97f-1440-11eb-aaec-e0d55e2a8bf9)

2020-10-23 00:00:00

Fedora 31 : freetype (2020-6b35849edd)

2020-11-09 00:00:00

CentOS 8 : freetype (CESA-2020:4952)

2021-02-01 00:00:00

suse

Security update for freetype2 (important)

2020-10-26 00:00:00

Security update for freetype2 (important)

2020-10-25 00:00:00

Security update for chromium (important)

2020-10-25 00:00:00

oraclelinux

freetype security update

2020-11-06 00:00:00

freetype security update

2020-11-13 00:00:00

cloudfoundry

USN-4593-1: FreeType vulnerability | Cloud Foundry

2020-11-19 00:00:00

veracode

Heap Buffer Overflow

2020-11-05 03:17:59

Heap Buffer Overflow

2020-10-25 12:34:11

prion

Heap overflow

2020-11-03 03:15:00

cbl_mariner

CVE-2020-15999 affecting package freetype for versions less than 2.11.1-1

2022-04-09 06:51:42

CVE-2020-15999 affecting package freetype 2.9.1-4

2022-03-19 16:40:53

osv

Important: freetype security update

2020-11-05 08:26:43

freetype - security update

2020-10-25 00:00:00

freetype vulnerability

2020-10-20 12:02:17

openvas

Fedora: Security Advisory for freetype (FEDORA-2020-6299161e89)

2020-10-25 00:00:00

openSUSE: Security Advisory for freetype2 (openSUSE-SU-2020:1744-1)

2020-10-27 00:00:00

Debian: Security Advisory (DLA-2415-1)

2020-10-26 00:00:00

thn

New Chrome 0-day Under Active Attacks – Update Your Browser Now

2020-10-21 16:26:00

WARNING: Google Discloses Windows Zero-Day Bug Exploited in the Wild

2020-11-02 09:43:00

New Chrome Zero-Day Under Active Attacks – Update Your Browser

2020-11-03 09:33:00

redhat

(RHSA-2020:4952) Important: freetype security update

2020-11-05 08:26:43

(RHSA-2020:4907) Important: freetype security update

2020-11-04 09:39:15

(RHSA-2020:4951) Important: freetype security update

2020-11-05 08:24:50

fedora

[SECURITY] Fedora 31 Update: freetype-2.10.0-4.fc31

2020-11-07 01:28:39

[SECURITY] Fedora 33 Update: freetype-2.10.4-1.fc33

2020-10-25 01:01:39

[SECURITY] Fedora 32 Update: freetype-2.10.4-1.fc32

2020-10-25 01:21:04

debian

[SECURITY] [DSA 4777-1] freetype security update

2020-10-21 19:00:07

[SECURITY] [DLA 2415-1] freetype security update

2020-10-25 21:59:56

[SECURITY] [DSA 4777-1] freetype security update

2020-10-21 19:00:07

amazon

Important: freetype

2020-12-08 20:55:00

checkpoint_advisories

Google Chrome Memory Corruption (CVE-2020-15999)

2020-10-24 00:00:00

cvelist

CVE-2020-15999

2020-11-03 00:00:00

gitlab

Out-of-bounds Write

2020-10-27 00:00:00

Out-of-bounds Write

2020-10-27 00:00:00

Out-of-bounds Write

2020-10-27 00:00:00

github

Heap buffer overflow in CefSharp

2020-10-27 19:47:38

githubexploit

Exploit for Out-of-bounds Write in Google Chrome

2020-10-28 16:16:25

Exploit for Out-of-bounds Write in Google Chrome

2020-12-30 18:02:23

Exploit for Out-of-bounds Write in Google Chrome

2020-12-30 19:58:33

centos

freetype security update

2020-11-06 21:57:09

ubuntucve

CVE-2020-15999

2020-10-20 00:00:00

debiancve

CVE-2020-15999

2020-11-03 03:15:14

nvd

CVE-2020-15999

2020-11-03 03:15:14

ubuntu

FreeType vulnerability

2020-10-22 00:00:00

FreeType vulnerability

2020-10-20 00:00:00

mageia

Updated freetype2 packages fix security vulnerability

2020-10-20 19:22:12

gentoo

FreeType: Arbitrary code execution

2020-10-23 00:00:00

Opera: Multiple Vulnerabilities

2024-01-15 00:00:00

Chromium, Google Chrome: Multiple vulnerabilities

2020-11-11 00:00:00

rocky

freetype security update

2020-11-05 08:26:43

qualysblog

Vulnerability Detection Pipeline (Beta)

2020-09-16 17:43:34

redhatcve

CVE-2020-15999

2020-10-21 18:33:33

archlinux

[ASA-202010-10] freetype2: arbitrary code execution

2020-10-20 00:00:00

[ASA-202010-11] lib32-freetype2: arbitrary code execution

2020-10-20 00:00:00

almalinux

Important: freetype security update

2020-11-05 08:26:43

alpinelinux

CVE-2020-15999

2020-11-03 03:15:14

malwarebytes

Google patches actively exploited zero-day bug that affects Chrome users

2020-10-26 10:58:14

Update your Chrome again as Google patches second zero-day in two weeks

2020-11-03 18:30:00

threatpost

Microsoft IE Browser Death March Hastens

2020-10-26 22:26:57

Google Patches Actively-Exploited Zero-Day Bug in Chrome Browser

2020-10-21 12:23:29

Microsoft Patch Tuesday Update Fixes 17 Critical Bugs

2020-11-10 21:12:21

cve

CVE-2020-15999

2020-11-03 03:15:14

freebsd

freetype2 -- heap buffer overlfow

2020-10-20 00:00:00

chromium -- multiple vulnerabilities

2020-10-20 00:00:00

slackware

[slackware-security] freetype

2020-10-20 22:26:01

photon

Moderate Photon OS Security Update - PHSA-2022-0442

2022-02-16 00:00:00

Critical Photon OS Security Update - PHSA-2022-0364

2022-02-22 00:00:00

Critical Photon OS Security Update - PHSA-2022-3.0-0364

2022-02-28 00:00:00

attackerkb

CVE-2020-17087 Windows Kernel local privilege escalation 0day

2020-11-11 00:00:00

CVE-2020-15999 Chrome Freetype 0day

2020-11-03 00:00:00

ibm

Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities (CVE-2020-1971, CVE-2020-15999, CVE-2017-12652)

2021-08-16 07:01:26

Security Bulletin: IBM Analyst's Notebook Premium uses a component with known vulnerabilities (CVE-2020-16013, CVE-2020-16009, CVE-2020-15999)

2021-07-23 15:10:10

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.5 ESR + CVE-2020-26951) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.2.0

2021-02-25 07:21:06

cisa_kev

Google Chrome FreeType Heap Buffer Overflow Vulnerability

2021-11-03 00:00:00

krebs

Patch Tuesday, November 2020 Edition

2020-11-11 01:56:41

ics

Rockwell Automation Connected Components Workbench

2023-09-21 12:00:00

kaspersky

KLA11986 Multiple vulnerabilities in Google Chrome

2020-10-20 00:00:00

KLA12013 Multiple vulnerabilities in Opera

2020-10-29 00:00:00

KLA12012 Multiple vulnerabilities in Mozilla Thunderbird

2020-11-17 00:00:00

chrome

Stable Channel Update for Desktop

2020-10-20 00:00:00

googleprojectzero

In-the-Wild Series: October 2020 0-day discovery

2021-03-18 00:00:00

altlinux

Security fix for the ALT Linux 10 package thunderbird version 78.5.0-alt1

2020-11-19 00:00:00

Security fix for the ALT Linux 10 package firefox-esr version 78.5.0-alt1

2020-11-16 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox ESR 78.5 — Mozilla

2020-11-17 00:00:00

Security Vulnerabilities fixed in Thunderbird 78.5 — Mozilla

2020-11-17 00:00:00

7.6 High

AI Score

Confidence

Low

0.026 Low

EPSS

Percentile

90.3%

JSON

K000133070 : Freetype vulnerability CVE-2020-15999

Related