Heap-based Buffer Overflow in FreeType 2 Ahead of March 2017
CVE-2017-8287

9.8CRITICAL

Key Information:

Vendor
Freetype
Status
Freetype
Vendor
CVE Published:
27 April 2017

Summary

FreeType 2 versions prior to March 26, 2017, exhibit a vulnerability in the t1_builder_close_contour function, which can lead to an out-of-bounds write. This condition arises due to improper handling of memory allocations, allowing attackers to potentially execute arbitrary code or crash applications relying on FreeType. Users and developers are advised to upgrade to the latest version to mitigate risks associated with this vulnerability.

References

https://security.gentoo.org/glsa/201706-14
vendor-advisoryx_refsource_GENTOO
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/c...
x_refsource_MISC
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=941
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.