CVE-2009-0946

Published: Apr 17, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

34967

third-party-advisory

x_refsource_SECUNIA

http://support.apple.com/kb/HT3639

x_refsource_CONFIRM

http://support.apple.com/kb/HT4435

x_refsource_CONFIRM

34913

third-party-advisory

x_refsource_SECUNIA

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=a18788b14db60ae3673f932249cd02d33a227c4e

x_refsource_CONFIRM

ADV-2009-1621

vdb-entry

x_refsource_VUPEN

34550

vdb-entry

x_refsource_BID

http://support.apple.com/kb/HT3549

x_refsource_CONFIRM

MDVSA-2009:243

vendor-advisory

x_refsource_MANDRIVA

APPLE-SA-2009-06-08-1

vendor-advisory

x_refsource_APPLE

USN-767-1

vendor-advisory

x_refsource_UBUNTU

270268

vendor-advisory

x_refsource_SUNALERT

35198

third-party-advisory

x_refsource_SECUNIA

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=79972af4f0485a11dcb19551356c45245749fc5b

x_refsource_CONFIRM

35074

third-party-advisory

x_refsource_SECUNIA

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=0545ec1ca36b27cb928128870a83e5f668980bc5

x_refsource_CONFIRM

ADV-2009-1522

vdb-entry

x_refsource_VUPEN

APPLE-SA-2010-11-10-1

vendor-advisory

x_refsource_APPLE

RHSA-2009:1062

vendor-advisory

x_refsource_REDHAT

APPLE-SA-2009-06-17-1

vendor-advisory

x_refsource_APPLE

APPLE-SA-2009-05-12

vendor-advisory

x_refsource_APPLE

35065

third-party-advisory

x_refsource_SECUNIA

DSA-1784

vendor-advisory

x_refsource_DEBIAN

35210

third-party-advisory

x_refsource_SECUNIA

GLSA-200905-05

vendor-advisory

x_refsource_GENTOO

35379

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=491384

x_refsource_CONFIRM

oval:org.mitre.oval:def:10149

vdb-entry

signature

x_refsource_OVAL

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/tree/ChangeLog

x_refsource_CONFIRM

SUSE-SR:2009:010

vendor-advisory

x_refsource_SUSE

TA09-133A

third-party-advisory

x_refsource_CERT

ADV-2009-1297

vdb-entry

x_refsource_VUPEN

35200

third-party-advisory

x_refsource_SECUNIA

http://support.apple.com/kb/HT3613

x_refsource_CONFIRM

RHSA-2009:0329

vendor-advisory

x_refsource_REDHAT

ADV-2009-1058

vdb-entry

x_refsource_VUPEN

35204

third-party-advisory

x_refsource_SECUNIA

34723

third-party-advisory

x_refsource_SECUNIA

RHSA-2009:1061

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-0946

Description

Affected Products

References