Back to search
CVE-2011-0226
Published: Jul 19, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGraphics in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Type 1 font in a PDF document, as exploited in the wild in July 2011.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
45224
third-party-advisory
x_refsource_SECUNIA
http://support.apple.com/kb/HT4803
x_refsource_CONFIRM
APPLE-SA-2011-07-15-1
vendor-advisory
x_refsource_APPLE
openSUSE-SU-2011:0852
vendor-advisory
x_refsource_SUSE
48619
vdb-entry
x_refsource_BID
[freetype-devel] 20110709 Re: details on iPhone exploit caused by FreeType?
mailing-list
x_refsource_MLIST
APPLE-SA-2011-07-15-2
vendor-advisory
x_refsource_APPLE
45167
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2011-10-12-3
vendor-advisory
x_refsource_APPLE
RHSA-2011:1085
vendor-advisory
x_refsource_REDHAT
http://support.apple.com/kb/HT4802
x_refsource_CONFIRM
[freetype-devel] 20110708 Re: details on iPhone exploit caused by FreeType?
mailing-list
x_refsource_MLIST
SUSE-SU-2011:0853
vendor-advisory
x_refsource_SUSE
[freetype-devel] 20110711 Re: details on iPhone exploit caused by FreeType?
mailing-list
x_refsource_MLIST
DSA-2294
vendor-advisory
x_refsource_DEBIAN
http://support.apple.com/kb/HT5002
x_refsource_CONFIRM
MDVSA-2011:120
vendor-advisory
x_refsource_MANDRIVA
[freetype-devel] 20110708 details on iPhone exploit caused by FreeType?
mailing-list
x_refsource_MLIST
[freetype-devel] 20110711 Re: details on iPhone exploit caused by FreeType?
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now