CVE-2015-9290

Published: Jul 30, 2019

Modified: Aug 6, 2024

PUBLISHED

Description

In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://savannah.nongnu.org/bugs/?45923

x_refsource_MISC

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1parse.c?id=e3058617f384cb6709f3878f753fa17aca9e3a30

x_refsource_MISC

[debian-lts-announce] 20190815 [SECURITY] [DLA 1887-1] freetype security update

mailing-list

x_refsource_MLIST

https://support.f5.com/csp/article/K38315305

x_refsource_CONFIRM

https://support.f5.com/csp/article/K38315305?utm_source=f5support&amp%3Butm_medium=RSS

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-9290

Description

Affected Products

References