FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.
References
Link | Resource |
---|---|
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/psaux/psobjs.c?id=db5a4a9ae7b0048f033361744421da8569642f73 | Patch Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:4254 | |
https://lists.debian.org/debian-lts-announce/2019/09/msg00002.html | Third Party Advisory |
https://savannah.nongnu.org/bugs/?45922 | Exploit Issue Tracking Third Party Advisory |
https://usn.ubuntu.com/4126-2/ |
Configurations
History
No history.
Information
Published : 2019-09-03 05:15
Updated : 2024-02-28 17:08
NVD link : CVE-2015-9382
Mitre link : CVE-2015-9382
CVE.ORG link : CVE-2015-9382
JSON object : View
Products Affected
freetype
- freetype
debian
- debian_linux
CWE
CWE-125
Out-of-bounds Read