An integer overflow vulnerability was discovered in Freetype in tt_hvadvance_adjust() function in src/truetype/ttgxvar.c. This flaw causes an application to crash or leads to a denial of service.
bugs.chromium.org/p/oss-fuzz/issues/detail?id=50462
bugzilla.redhat.com/show_bug.cgi?id=2186428
nvd.nist.gov/vuln/detail/CVE-2023-2004
www.cve.org/CVERecord?id=CVE-2023-2004