PT-2019-7340 · Freetype+4 · Freetype+4

Kcc

Publicado

2016-01-13

Atualizado

2019-12-24

CVE-2015-9381

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions FreeType versions prior to 2.6.1

Description The issue is related to a heap-based buffer over-read in the T1 Get Private Dict function located in type1/t1parse.c.

Recommendations For versions prior to 2.6.1, update to version 2.6.1 or later to resolve the issue.

Exploit

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

ALT-PU-2016-1019

CESA-2018_3140

CESA-2019_4254

CVE-2015-9381

DLA-1909-1

RHSA-2018:3140

RHSA-2018_3140

RHSA-2019:4254

RHSA-2019_4254

USN-4126-2

Alt Linux

Centos

Freetype

Red Hat

Ubuntu