Home
Packages
Report
Policy
Login
Signup
« List of all CVEs
CVE-2025-23022
Published:
1/10/2025
Last updated:
2/12/2025
Reserved:
1/10/2025
FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.
CNA assigner:
mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca)
Requested by:
n/a
Metrics
Version
Score
Severity
Vector String
3.1
4
Medium
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Opam packages affected (2)
conf-freetype
conf-gd
Products affected (1)
Product
Vendor
Version
FreeType
FreeType
n/a
References (2)
https://gitlab.freedesktop.org/freetype/freetype/-/issues/1312
https://security-tracker.debian.org/tracker/CVE-2025-23022