Heap-Based Buffer Overflow in FreeType 2 Software from Vendor FreeType
CVE-2017-7857

9.8CRITICAL

Key Information:

Vendor
Freetype
Status
Freetype
Vendor
CVE Published:
14 April 2017

Summary

FreeType 2 prior to March 8, 2017, is susceptible to a heap-based buffer overflow vulnerability that manifests in the TT_Get_MM_Var function found in truetype/ttgxvar.c and the sfnt_init_face function within sfnt/sfobjs.c. This flaw allows attackers to potentially exploit memory corruption issues, leading to arbitrary code execution or other undesirable actions on affected systems. It is imperative for users to review their implementations and apply available patches to mitigate risk.

References

https://security.gentoo.org/glsa/201706-14
vendor-advisoryx_refsource_GENTOO
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/c...
x_refsource_MISC
http://www.securityfocus.com/bid/97680
vdb-entryx_refsource_BID

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.