Show filters
94 Total Results
Displaying 1-10 of 94
Sort by:
Attacker Value
Very High

CVE-2020-15999 Chrome Freetype 0day

Disclosure Date: November 03, 2020 (last updated February 06, 2025)
Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
8
2
Attacker Value
Unknown

CVE-2025-23022

Disclosure Date: January 10, 2025 (last updated January 17, 2025)
FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.
Attack Vector: LocalPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-31782

Disclosure Date: June 02, 2022 (last updated October 07, 2023)
ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2022-27406

Disclosure Date: April 22, 2022 (last updated October 07, 2023)
FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-27405

Disclosure Date: April 22, 2022 (last updated October 07, 2023)
FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-27404

Disclosure Date: April 22, 2022 (last updated October 07, 2023)
FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2015-9383

Disclosure Date: September 03, 2019 (last updated November 27, 2024)
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2015-9381

Disclosure Date: September 03, 2019 (last updated November 27, 2024)
FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c.
0
0
Attacker Value
Unknown

CVE-2015-9382

Disclosure Date: September 03, 2019 (last updated November 27, 2024)
FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.
0
0
Attacker Value
Unknown

CVE-2015-9290

Disclosure Date: July 30, 2019 (last updated November 08, 2023)
In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.
0
0
View More Topics  Next >