Lucene search
GoogleOSV:CVE-2016-10244HistoryMar 06, 2017 - 6:59 a.m.
CVE-2016-10244
2017-03-0606:59:00
Google
osv.dev
7
0.011 Low
EPSS
Percentile
84.2%
The parse_charstrings function in type1/t1load.c in FreeType 2 before 2.7 does not ensure that a font contains a glyph name, which allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted file.
References
git.savannah.gnu.org/cgit/freetype/freetype2.git/tree/ChangeLog?h=VER-2-7
www.debian.org/security/2017/dsa-3839
www.securityfocus.com/bid/97405
www.securitytracker.com/id/1038090
www.securitytracker.com/id/1038201
bugs.chromium.org/p/oss-fuzz/issues/detail?id=36
security.gentoo.org/glsa/201706-14
source.android.com/security/bulletin/2017-04-01
www.oracle.com/security-alerts/cpuapr2020.html
Related
nessus
nessus
Debian DLA-848-1 : freetype security update
2017-03-08 00:00:00
Fedora 25 : freetype (2017-c09c0cc384)
2017-03-13 00:00:00
Fedora 24 : freetype (2017-3886afeb06)
2017-03-14 00:00:00
alpinelinux
alpinelinux
CVE-2016-10244
2017-03-06 06:59:00
cvelist
cvelist
CVE-2016-10244
2017-03-06 06:11:00
openvas
openvas
Ubuntu: Security Advisory (USN-3237-1)
2017-03-21 00:00:00
Fedora Update for freetype FEDORA-2017-3886afeb06
2017-03-14 00:00:00
Mageia: Security Advisory (MGASA-2017-0085)
2022-01-28 00:00:00
cloudfoundry
cloudfoundry
USN-3237-1: FreeType vulnerability | Cloud Foundry
2017-03-31 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: freetype-2.6.3-3.fc24
2017-03-13 23:53:58
[SECURITY] Fedora 25 Update: freetype-2.6.5-3.fc25
2017-03-12 21:57:52
osv
osv
freetype - security update
2017-03-07 00:00:00
freetype - security update
2017-04-28 00:00:00
redhatcve
redhatcve
CVE-2016-10244
2017-03-07 15:21:00
nvd
nvd
CVE-2016-10244
2017-03-06 06:59:00
ubuntu
ubuntu
FreeType vulnerability
2017-03-20 00:00:00
debiancve
debiancve
CVE-2016-10244
2017-03-06 06:59:00
ubuntucve
ubuntucve
CVE-2016-10244
2017-03-06 00:00:00
debian
debian
[SECURITY] [DLA 848-1] freetype security update
2017-03-07 12:02:39
[SECURITY] [DSA 3839-1] freetype security update
2017-04-28 19:24:57
[SECURITY] [DSA 3839-1] freetype security update
2017-04-28 19:24:57
prion
prion
Heap overflow
2017-03-06 06:59:00
mageia
mageia
Updated freetype2 packages fix security vulnerability
2017-03-25 19:56:41
veracode
veracode
Denial Of Service (DoS)
2017-07-05 06:44:48
cve
cve
CVE-2016-10244
2017-03-06 06:59:00
ibm
ibm
Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in freetype2 (CVE-2017-8287 CVE-2017-8105 CVE-2016-10244)
2023-12-07 22:31:02
suse
suse
Security update for freetype2 (important)
2018-02-12 12:08:42
Security update for freetype2 (important)
2018-02-09 21:13:00
gentoo
gentoo
FreeType: Multiple vulnerabilities
2017-06-06 00:00:00
androidsecurity
androidsecurity
Android Security BulletinβApril 2017
2017-04-03 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2020
2020-04-14 00:00:00
Oracle Critical Patch Update Advisory - October 2020
2020-10-20 00:00:00