Denial of Service Vulnerability in FreeType Affecting Mozilla Firefox Mobile
CVE-2012-1143

Currently unrated

Key Information:

Vendor: Freetype
Status: Freetype; Firefox Mobile
Vendor: CVE Published:; 25 April 2012

What is CVE-2012-1143?

The vulnerability in FreeType prior to version 2.4.9, utilized in Mozilla Firefox Mobile prior to version 10.0.4, permits remote attackers to initiate a denial of service condition. This arises from a divide-by-zero error resulting from the handling of a malformed font file, potentially leading to application crashes when the crafted font is processed.

References

http://secunia.com/advisories/48797

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/48508

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/48822

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Apr 25, 2012
Vulnerability Reserved
Feb 14, 2012

Freetype

What is CVE-2012-1143?

References

Timeline