Lucene search
Veracode Vulnerability DatabaseVERACODE:31144HistoryJul 06, 2021 - 7:52 a.m.
Arbtirary Code Execution
2021-07-0607:52:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.009 Low
EPSS
Percentile
82.9%
freetype is vulnerable to arbitrary code execution. An out-of-bounds write resulting in a heap-based buffer overflow in the TT_Get_MM_Var function in truetype/ttgxvar.c and sfnt_init_face function in sfnt/sfobjs.c allows an attacker to execute arbitrary code on the host OS.
Related
debiancve
debiancve
CVE-2017-7857
2017-04-14 04:59:00
prion
prion
Heap overflow
2017-04-14 04:59:00
osv
osv
CVE-2017-7857
2017-04-14 04:59:00
cvelist
cvelist
CVE-2017-7857
2017-04-14 04:30:00
nvd
nvd
CVE-2017-7857
2017-04-14 04:59:00
cve
cve
CVE-2017-7857
2017-04-14 04:59:00
redhatcve
redhatcve
CVE-2017-7857
2017-04-24 14:19:07
ubuntucve
ubuntucve
CVE-2017-7857
2017-04-14 00:00:00
nessus
nessus
Photon OS 1.0: Freetype2 PHSA-2017-0015
2019-02-07 00:00:00
Photon OS 1.0: Freetype2 / Gnutls / Linux / Tar PHSA-2017-0015 (deprecated)
2018-08-17 00:00:00
GLSA-201706-14 : FreeType: Multiple vulnerabilities
2017-06-07 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2017-0015
2017-05-08 00:00:00
Critical Photon OS Security Update - PHSA-2018-0058
2018-06-12 00:00:00
Critical Photon OS Security Update - PHSA-2022-0472
2022-02-17 00:00:00
gentoo
gentoo
FreeType: Multiple vulnerabilities
2017-06-06 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2020
2020-10-20 00:00:00
Oracle Critical Patch Update Advisory - April 2020
2020-04-14 00:00:00