CVE-2012-5670

The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=7f2e4f4f553f6836be7683f66226afac3fa979b8
http://lists.opensuse.org/opensuse-updates/2013-01/msg00056.html
http://lists.opensuse.org/opensuse-updates/2013-01/msg00078.html
http://secunia.com/advisories/51826	Vendor Advisory
http://secunia.com/advisories/51900	Vendor Advisory
http://www.freetype.org/
http://www.openwall.com/lists/oss-security/2012/12/25/2
http://www.securitytracker.com/id?1027921
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.520186
http://www.ubuntu.com/usn/USN-1686-1
https://savannah.nongnu.org/bugs/?37907
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=7f2e4f4f553f6836be7683f66226afac3fa979b8
http://lists.opensuse.org/opensuse-updates/2013-01/msg00056.html
http://lists.opensuse.org/opensuse-updates/2013-01/msg00078.html
http://secunia.com/advisories/51826	Vendor Advisory
http://secunia.com/advisories/51900	Vendor Advisory
http://www.freetype.org/
http://www.openwall.com/lists/oss-security/2012/12/25/2
http://www.securitytracker.com/id?1027921
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.520186
http://www.ubuntu.com/usn/USN-1686-1
https://savannah.nongnu.org/bugs/?37907

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:freetype:freetype::::::::
	cpe:2.3:a:freetype:freetype:1.3.1:::::::*
	cpe:2.3:a:freetype:freetype:2.0.0:::::::*
	cpe:2.3:a:freetype:freetype:2.0.1:::::::*
	cpe:2.3:a:freetype:freetype:2.0.2:::::::*
	cpe:2.3:a:freetype:freetype:2.0.3:::::::*
	cpe:2.3:a:freetype:freetype:2.0.4:::::::*
	cpe:2.3:a:freetype:freetype:2.0.5:::::::*
	cpe:2.3:a:freetype:freetype:2.0.6:::::::*
	cpe:2.3:a:freetype:freetype:2.0.7:::::::*
	cpe:2.3:a:freetype:freetype:2.0.8:::::::*
	cpe:2.3:a:freetype:freetype:2.0.9:::::::*
	cpe:2.3:a:freetype:freetype:2.1:::::::*
	cpe:2.3:a:freetype:freetype:2.1.3:::::::*
	cpe:2.3:a:freetype:freetype:2.1.4:::::::*
	cpe:2.3:a:freetype:freetype:2.1.5:::::::*
	cpe:2.3:a:freetype:freetype:2.1.6:::::::*
	cpe:2.3:a:freetype:freetype:2.1.7:::::::*
	cpe:2.3:a:freetype:freetype:2.1.8:::::::*
	cpe:2.3:a:freetype:freetype:2.1.8:rc1::::::
	cpe:2.3:a:freetype:freetype:2.1.9:::::::*
	cpe:2.3:a:freetype:freetype:2.1.10:::::::*
	cpe:2.3:a:freetype:freetype:2.2.0:::::::*
	cpe:2.3:a:freetype:freetype:2.2.1:::::::*
	cpe:2.3:a:freetype:freetype:2.3.0:::::::*
	cpe:2.3:a:freetype:freetype:2.3.1:::::::*
	cpe:2.3:a:freetype:freetype:2.3.2:::::::*
	cpe:2.3:a:freetype:freetype:2.3.3:::::::*
	cpe:2.3:a:freetype:freetype:2.3.4:::::::*
	cpe:2.3:a:freetype:freetype:2.3.5:::::::*
	cpe:2.3:a:freetype:freetype:2.3.6:::::::*
	cpe:2.3:a:freetype:freetype:2.3.7:::::::*
	cpe:2.3:a:freetype:freetype:2.3.8:::::::*
	cpe:2.3:a:freetype:freetype:2.3.9:::::::*
	cpe:2.3:a:freetype:freetype:2.3.10:::::::*
	cpe:2.3:a:freetype:freetype:2.3.11:::::::*
	cpe:2.3:a:freetype:freetype:2.3.12:::::::*
	cpe:2.3:a:freetype:freetype:2.4.0:::::::*
	cpe:2.3:a:freetype:freetype:2.4.1:::::::*
	cpe:2.3:a:freetype:freetype:2.4.2:::::::*
	cpe:2.3:a:freetype:freetype:2.4.3:::::::*
	cpe:2.3:a:freetype:freetype:2.4.4:::::::*
	cpe:2.3:a:freetype:freetype:2.4.5:::::::*
	cpe:2.3:a:freetype:freetype:2.4.6:::::::*
	cpe:2.3:a:freetype:freetype:2.4.7:::::::*
	cpe:2.3:a:freetype:freetype:2.4.8:::::::*
	cpe:2.3:a:freetype:freetype:2.4.9:::::::*

History

21 Nov 2024, 01:45

Type	Values Removed	Values Added
References	~~() http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=7f2e4f4f553f6836be7683f66226afac3fa979b8 -~~	() http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=7f2e4f4f553f6836be7683f66226afac3fa979b8 -
References	~~() http://lists.opensuse.org/opensuse-updates/2013-01/msg00056.html -~~	() http://lists.opensuse.org/opensuse-updates/2013-01/msg00056.html -
References	~~() http://lists.opensuse.org/opensuse-updates/2013-01/msg00078.html -~~	() http://lists.opensuse.org/opensuse-updates/2013-01/msg00078.html -
References	~~() http://secunia.com/advisories/51826 - Vendor Advisory~~	() http://secunia.com/advisories/51826 - Vendor Advisory
References	~~() http://secunia.com/advisories/51900 - Vendor Advisory~~	() http://secunia.com/advisories/51900 - Vendor Advisory
References	~~() http://www.freetype.org/ -~~	() http://www.freetype.org/ -
References	~~() http://www.openwall.com/lists/oss-security/2012/12/25/2 -~~	() http://www.openwall.com/lists/oss-security/2012/12/25/2 -
References	~~() http://www.securitytracker.com/id?1027921 -~~	() http://www.securitytracker.com/id?1027921 -
References	~~() http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.520186 -~~	() http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.520186 -
References	~~() http://www.ubuntu.com/usn/USN-1686-1 -~~	() http://www.ubuntu.com/usn/USN-1686-1 -
References	~~() https://savannah.nongnu.org/bugs/?37907 -~~	() https://savannah.nongnu.org/bugs/?37907 -

Information

Published : 2013-01-24 21:55

Updated : 2024-11-21 01:45

NVD link : CVE-2012-5670

Mitre link : CVE-2012-5670

CVE.ORG link : CVE-2012-5670

JSON object : View

Products Affected

freetype

freetype

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

4.3 /10