Marek Kašík

**Name of the Vulnerable Software and Affected Versions** FreeType versions prior to 2.4.2 FreeType versions prior to 2.4.8 **Description** The issue is related to a buffer overflow in the ftmulti demo program, which can be triggered by a crafted font file. This can cause a denial of service, resulting in an application crash, or potentially allow the execution of arbitrary code. Additionally, there are multiple vulnerabilities in the FreeType package that can lead to breaches of confidentiality, integrity, and availability of protected information, and these can be exploited remotely. **Recommendations** For versions prior to 2.4.2, update to version 2.4.2 or later. For versions prior to 2.4.8, update to version 2.4.8 or later.