Denial of Service Vulnerability in FreeType Font Engine
CVE-2012-5668

Currently unrated

Key Information:

Vendor

Freetype

Status
Freetype
Vendor
CVE Published:
24 January 2013

What is CVE-2012-5668?

The FreeType Font Engine prior to version 2.4.11 is susceptible to a denial of service, resulting from context-dependent attacks. The vulnerability arises when specific BDF fonts are processed, allowing attackers to exploit improper handling of an allocation error in the bdf_free_font function, leading to a NULL pointer dereference and application crash.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securitytracker.com/id?1027921
vdb-entryx_refsource_SECTRACK
http://www.freetype.org/
x_refsource_CONFIRM
https://savannah.nongnu.org/bugs/?37905
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.