CVE-2015-9290

In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.
Configurations

Configuration 1 (hide)

cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*

History

07 Nov 2023, 02:28

Type Values Removed Values Added
References
  • {'url': 'https://support.f5.com/csp/article/K38315305?utm_source=f5support&utm_medium=RSS', 'name': 'https://support.f5.com/csp/article/K38315305?utm_source=f5support&utm_medium=RSS', 'tags': [], 'refsource': 'CONFIRM'}
  • () https://support.f5.com/csp/article/K38315305?utm_source=f5support&amp%3Butm_medium=RSSĀ -

Information

Published : 2019-07-30 13:15

Updated : 2024-02-28 17:08


NVD link : CVE-2015-9290

Mitre link : CVE-2015-9290

CVE.ORG link : CVE-2015-9290


JSON object : View

Products Affected

freetype

  • freetype
CWE
CWE-125

Out-of-bounds Read