« List of all CVEs

CVE-2012-5670

Published: 1/24/2013 Last updated: 8/6/2024 Reserved: 10/24/2012

The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODING field with a negative value.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (2)

conf-freetype conf-gd

Products affected (1)

Product Vendor Version
n/a n/a < unspecified

References (22)