Lucene search

Veracode Vulnerability DatabaseVERACODE:4024

HistoryApr 27, 2017 - 10:11 p.m.

Heap Based Buffer Overflow

2017-04-2722:11:21

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.009 Low

EPSS

Percentile

83.3%

JSON

FreeType is vulnerable to out-of-bounds write issues. These writes are caused by a heap-based buffer overflow in the t1_builder_close_contour function in psaux/psobjs.c. If a malformed font is supplied, it is possible that the contour variable is started but no points added, causing the buffer overflow.

CPENameOperatorVersion
freetypele2.6.4
freetype:3.5eq2.7-r2
freetype:3.3eq2.6.2-r0
freetypele2.8.0.1

Name	Operator	Version
freetype	le	2.6.4
freetype:3.5	eq	2.7-r2
freetype:3.3	eq	2.6.2-r0
freetype	le	2.8.0.1

References

git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=3774fc08b502c3e685afca098b6e8a195aded6a0

www.debian.org/security/2017/dsa-3839

www.securityfocus.com/bid/99091

bugs.chromium.org/p/oss-fuzz/issues/detail?id=941

security.gentoo.org/glsa/201706-14

www.oracle.com/security-alerts/cpuapr2020.html

www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

0.009 Low

EPSS

Percentile

83.3%

JSON

Related for VERACODE:4024