CVE-2014-9665
Published: August 2, 2015
The Load_SBit_Png function in sfnt/pngshim.c in FreeType before 2.5.4 does not restrict the rows and pitch values of PNG data, which allows remote attackers to cause a denial of service (integer overflow and heap-based buffer overflow) or possibly have unspecified other impact by embedding a PNG file in a .ttf font file.
HIGH
CVSS v2: 7.5
CVSS v2: 7.5
Status
| DocFilters Release | Package | State | Justification | Comment |
|---|---|---|---|---|
| 25.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 24.4 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 24.4.0 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 24.3 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 24.2.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 24.2 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 24.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 23.3 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 23.2.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 23.2 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 23.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 22.4 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 22.3 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 22.2 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 22.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 21.11.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 21.11 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 21.8.1 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |
| 21.8 | freetype (2.6.5) | Not Affected | Code Not Present | 2.6.5 does not match CVE configuration. |