CVE-2010-3814

Name of the Vulnerable Software and Affected Versions FreeType versions prior to 2.4.8 FreeType version 2.4.3 and earlier

Description The issue is related to a heap-based buffer overflow in the Ins SHZ function in ttinterp.c, which can be triggered by a crafted SHZ bytecode instruction, potentially allowing remote attackers to execute arbitrary code or cause a denial of service. This is related to TrueType opcodes and can be demonstrated by a PDF document with a crafted embedded font. Multiple vulnerabilities in the FreeType package can lead to violations of confidentiality, integrity, and availability of protected information, and exploitation can be done remotely.

Recommendations For FreeType versions prior to 2.4.8, update to version 2.4.8 or later to resolve the issue. For FreeType version 2.4.3 and earlier, update to version 2.4.8 or later to resolve the issue. As a temporary workaround, consider restricting the use of crafted SHZ bytecode instructions and TrueType opcodes until a patch is available.