PT-2020-1256 · Freetype+9 · Freetype+9

Published

2020-10-19

·

Updated

2026-05-07

·

CVE-2020-15999

CVSS v3.1

9.6

Critical

VectorAV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 86.0.4240.111
Description The issue is related to a heap buffer overflow in the FreeType library used by Google Chrome, which could lead to remote code execution with no additional execution privileges needed. User interaction is required for exploitation. The vulnerability is caused by a heap buffer overflow when processing glyphs with very large bitmaps. There are reports that this issue is being actively exploited by attackers.
Recommendations For Google Chrome versions prior to 86.0.4240.111, update to version 86.0.4240.111 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted HTML pages or TTF fonts with PNG sbit glyphs until the update is applied. Restrict access to the FreeType library to minimize the risk of exploitation.

Exploit

Fix

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-120CWE-119

Related Identifiers

ALSA-2020:4952
ALSA-2020_4952
ALSA-2021_4149
ALSA-2025_16880
ALT-PU-2020-3093
ALT-PU-2020-3123
ALT-PU-2020-3144
ALT-PU-2020-3160
ALT-PU-2020-3165
ALT-PU-2020-3340
ALT-PU-2020-3379
ALT-PU-2020-3384
ALT-PU-2020-3386
ALT-PU-2020-3424
ALT-PU-2021-1157
ALT-PU-2021-1210
ALT-PU-2021-1368
ALT-PU-2021-1369
ALT-PU-2021-1379
ALT-PU-2021-3368
ASB-A-171232105
AZL-8324
BDU:2020-05385
CESA-2020_4907
CESA-2020_4952
CVE-2020-15999
DLA-2415-1
DSA-4777-1
DSA-4824-1
ELSA-2020-4907
ELSA-2020-4952
GHSA-PV36-H7JH-QM62
JLSEC-2026-456
MGASA-2020-0389
OESA-2021-1103
OPENSUSE-SU-2020:1718-1
OPENSUSE-SU-2020:1731-1
OPENSUSE-SU-2020:1734-1
OPENSUSE-SU-2020:1737-1
OPENSUSE-SU-2020:1744-1
OPENSUSE-SU-2020:1829-1
OPENSUSE-SU-2020:1952-1
OPENSUSE-SU-2020:2020-1
OPENSUSE-SU-2020:2031-1
OPENSUSE-SU-2020:2096-1
OPENSUSE-SU-2020:2187-1
OPENSUSE-SU-2020:2315-1
OPENSUSE-SU-2020_1718-1
OPENSUSE-SU-2020_1734-1
OPENSUSE-SU-2020_1737-1
OPENSUSE-SU-2020_1744-1
OPENSUSE-SU-2020_1952-1
OPENSUSE-SU-2020_2020-1
OPENSUSE-SU-2020_2031-1
OPENSUSE-SU-2020_2096-1
OPENSUSE-SU-2020_2187-1
OPENSUSE-SU-2020_2315-1
OPENSUSE-SU-2021:1134-1
OPENSUSE-SU-2021_1134-1
OPENSUSE-SU-2024:10600-1
OPENSUSE-SU-2024:10601-1
OPENSUSE-SU-2024:10681-1
OPENSUSE-SU-2024:10770-1
OPENSUSE-SU-2024:11209-1
OPENSUSE-SU-2024:12948-1
OPENSUSE-SU-2024:13827-1
OPENSUSE-SU-2024:14572-1
RHSA-2020:4351
RHSA-2020:4907
RHSA-2020:4949
RHSA-2020:4950
RHSA-2020:4951
RHSA-2020:4952
RHSA-2020_4351
RHSA-2020_4907
RHSA-2020_4952
RLSA-2020:4952
RLSA-2020_4952
SUSE-SU-2020:14548-1
SUSE-SU-2020:2995-1
SUSE-SU-2020:2998-1
SUSE-SU-2020:3383-1
SUSE-SU-2020:3458-1
SUSE-SU-2020:3528-1
SUSE-SU-2020:3548-1
SUSE-SU-2020_14548-1
SUSE-SU-2020_2995-1
SUSE-SU-2020_2998-1
USN-4593-1
USN-4593-2

Affected Products

Alt Linux
Almalinux
Centos
Freetype
Google Chrome
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu