Information on source package freetype

Available versions

ReleaseVersion
buster2.9.1-3+deb10u3
buster (security)2.9.1-3+deb10u2
bullseye2.10.4+dfsg-1+deb11u1
bookworm2.12.1+dfsg-5
trixie2.13.2+dfsg-1
sid2.13.2+dfsg-1

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2022-31782vulnerablevulnerablefixedfixedfixedftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based bu ...

Resolved issues

BugDescription
CVE-2022-27406FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovere ...
CVE-2022-27405FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovere ...
CVE-2022-27404FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovere ...
CVE-2020-15999Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.1 ...
CVE-2018-6942An issue was discovered in FreeType 2 through 2.9. A NULL pointer dere ...
CVE-2017-8287FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a he ...
CVE-2017-8105FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a he ...
CVE-2017-7864FreeType 2 before 2017-02-02 has an out-of-bounds write caused by a he ...
CVE-2017-7858FreeType 2 before 2017-03-07 has an out-of-bounds write related to the ...
CVE-2017-7857FreeType 2 before 2017-03-08 has an out-of-bounds write caused by a he ...
CVE-2016-10328FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a he ...
CVE-2016-10244The parse_charstrings function in type1/t1load.c in FreeType 2 before ...
CVE-2015-9383FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_v ...
CVE-2015-9382FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/ ...
CVE-2015-9381FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Priv ...
CVE-2015-9290In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c ...
CVE-2014-9747The t42_parse_encoding function in type42/t42parse.c in FreeType befor ...
CVE-2014-9746The (1) t1_parse_font_matrix function in type1/t1load.c, (2) cid_parse ...
CVE-2014-9745The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 ...
CVE-2014-9675bdf/bdflib.c in FreeType before 2.5.4 identifies property names by onl ...
CVE-2014-9674The Mac_Read_POST_Resource function in base/ftobjs.c in FreeType befor ...
CVE-2014-9673Integer signedness error in the Mac_Read_POST_Resource function in bas ...
CVE-2014-9672Array index error in the parse_fond function in base/ftmac.c in FreeTy ...
CVE-2014-9671Off-by-one error in the pcf_get_properties function in pcf/pcfread.c i ...
CVE-2014-9670Multiple integer signedness errors in the pcf_get_encodings function i ...
CVE-2014-9669Multiple integer overflows in sfnt/ttcmap.c in FreeType before 2.5.4 a ...
CVE-2014-9668The woff_open_font function in sfnt/sfobjs.c in FreeType before 2.5.4 ...
CVE-2014-9667sfnt/ttload.c in FreeType before 2.5.4 proceeds with offset+length cal ...
CVE-2014-9666The tt_sbit_decoder_init function in sfnt/ttsbit.c in FreeType before ...
CVE-2014-9665The Load_SBit_Png function in sfnt/pngshim.c in FreeType before 2.5.4 ...
CVE-2014-9664FreeType before 2.5.4 does not check for the end of the data during ce ...
CVE-2014-9663The tt_cmap4_validate function in sfnt/ttcmap.c in FreeType before 2.5 ...
CVE-2014-9662cff/cf2ft.c in FreeType before 2.5.4 does not validate the return valu ...
CVE-2014-9661type42/t42parse.c in FreeType before 2.5.4 does not consider that scan ...
CVE-2014-9660The _bdf_parse_glyphs function in bdf/bdflib.c in FreeType before 2.5. ...
CVE-2014-9659cff/cf2intrp.c in the CFF CharString interpreter in FreeType before 2. ...
CVE-2014-9658The tt_face_load_kern function in sfnt/ttkern.c in FreeType before 2.5 ...
CVE-2014-9657The tt_face_load_hdmx function in truetype/ttpload.c in FreeType befor ...
CVE-2014-9656The tt_sbit_decoder_load_image function in sfnt/ttsbit.c in FreeType b ...
CVE-2014-2241The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer f ...
CVE-2014-2240Stack-based buffer overflow in the cf2_hintmap_build function in cff/c ...
CVE-2012-5670The _bdf_parse_glyphs function in FreeType before 2.4.11 allows contex ...
CVE-2012-5669The _bdf_parse_glyphs function in FreeType before 2.4.11 allows contex ...
CVE-2012-5668FreeType before 2.4.11 allows context-dependent attackers to cause a d ...
CVE-2012-1144FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1143FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1142FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1141FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1140FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1139Array index error in FreeType before 2.4.9, as used in Mozilla Firefox ...
CVE-2012-1138FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1137FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1136FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1135FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1134FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1133FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1132FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1131FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1130FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1129FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1128FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1127FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2012-1126FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 ...
CVE-2011-3439FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attac ...
CVE-2011-3256FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5 ...
CVE-2011-0226Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, ...
CVE-2010-3855Buffer overflow in the ft_var_readpackedpoints function in truetype/tt ...
CVE-2010-3814Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in Fr ...
CVE-2010-3311Integer overflow in base/ftstream.c in libXft (aka the X FreeType libr ...
CVE-2010-3054Unspecified vulnerability in FreeType 2.3.9, and other versions before ...
CVE-2010-3053bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause ...
CVE-2010-2808Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs. ...
CVE-2010-2807FreeType before 2.4.2 uses incorrect integer data types during bounds ...
CVE-2010-2806Array index error in the t42_parse_sfnts function in type42/t42parse.c ...
CVE-2010-2805The FT_Stream_EnterFrame function in base/ftstream.c in FreeType befor ...
CVE-2010-2541Buffer overflow in ftmulti.c in the ftmulti demo program in FreeType b ...
CVE-2010-2527Multiple buffer overflows in demo programs in FreeType before 2.4.0 al ...
CVE-2010-2520Heap-based buffer overflow in the Ins_IUP function in truetype/ttinter ...
CVE-2010-2519Heap-based buffer overflow in the Mac_Read_POST_Resource function in b ...
CVE-2010-2500Integer overflow in the gray_render_span function in smooth/ftgrays.c ...
CVE-2010-2499Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs. ...
CVE-2010-2498The psh_glyph_find_strong_points function in pshinter/pshalgo.c in Fre ...
CVE-2010-2497Integer underflow in glyph handling in FreeType before 2.4.0 allows re ...
CVE-2010-1797Multiple stack-based buffer overflows in the cff_decoder_parse_charstr ...
CVE-2009-0946Multiple integer overflows in FreeType 2.3.9 and earlier allow remote ...
CVE-2008-1808Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dep ...
CVE-2008-1807FreeType2 before 2.3.6 allow context-dependent attackers to execute ar ...
CVE-2008-1806Integer overflow in FreeType2 before 2.3.6 allows context-dependent at ...
CVE-2007-3506The ft_bitmap_assure_buffer function in src/base/ftbimap.c in FreeType ...
CVE-2007-2754Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and e ...
CVE-2007-1351Integer overflow in the bdfReadCharacters function in bdfread.c in (1) ...
CVE-2006-3467Integer overflow in FreeType before 2.2 allows remote attackers to cau ...
CVE-2006-2661ftutil.c in Freetype before 2.2 allows remote attackers to cause a den ...
CVE-2006-1861Multiple integer overflows in FreeType before 2.2 allow remote attacke ...
CVE-2006-0747Integer underflow in Freetype before 2.2 allows remote attackers to ca ...

Security announcements

DSA / DLADescription
DLA-2415-1freetype - security update
DSA-4777-1freetype - security update
DLA-1909-1freetype - security update
DLA-1887-1freetype - security update
DLA-931-1freetype - security update
DSA-3839-1freetype - security update
DLA-918-1freetype - security update
DLA-900-1freetype - security update
DLA-848-1freetype - security update
DSA-3461-1freetype - security update
DSA-3370-1freetype - security update
DLA-319-1freetype - security update
DLA-185-1freetype - security update
DSA-3188-1freetype - security update
DSA-2428-1freetype - several
DSA-2350-1freetype - missing input sanitising
DSA-2328-1freetype - missing input sanitising
DSA-2294-1freetype - missing input sanitization
DSA-2155-1freetype - several
DSA-2116-1freetype - integer overflow
DSA-2105-1freetype - several vulnerabilities
DSA-2070-1freetype - several vulnerabilities
DSA-1784-1freetype - arbitrary code execution
DSA-1635-1freetype - multiple vulnerabilities
DSA-1454-1freetype - arbitrary code execution
DSA-1334-1freetype
DSA-1302-1freetype - integer overflow
DSA-1178-1freetype
DSA-1095-1freetype - integer overflows

Search for package or bug name: Reporting problems