CVE-2010-2807

FreeType <2.4.2 - DoS/Code Injection

Title source: llm

Description

FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.

References (21)

[Release Notes, Third Party Advisory] http://freetype.sourceforge.net/index2.html#release-freetype-2.4.2

[Patch, Third Party Advisory] http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=346f1867fd32dae8f56e5b482d1af98f626804ac

[Mailing List, Third Party Advisory] http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

[Mailing List, Third Party Advisory] http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

[Mailing List, Patch, Third Party Advisory] http://marc.info/?l=oss-security&m=128111955616772&w=2

[Third Party Advisory] http://secunia.com/advisories/40816

[Third Party Advisory] http://secunia.com/advisories/40982

[Third Party Advisory] http://secunia.com/advisories/42314

[Third Party Advisory] http://secunia.com/advisories/42317

[Product, Third Party Advisory] http://sourceforge.net/projects/freetype/files/freetype2/2.4.2/NEWS/view

[Broken Link] http://support.apple.com/kb/HT4435

[Third Party Advisory] http://support.apple.com/kb/HT4456

[Third Party Advisory] http://support.apple.com/kb/HT4457

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/42285

[Third Party Advisory] http://www.ubuntu.com/usn/USN-972-1

[Third Party Advisory] http://www.vupen.com/english/advisories/2010/2018

[Third Party Advisory] http://www.vupen.com/english/advisories/2010/2106

[Third Party Advisory] http://www.vupen.com/english/advisories/2010/3045

[Third Party Advisory] http://www.vupen.com/english/advisories/2010/3046

[Issue Tracking, Release Notes, Third Party Advisory] https://bugs.launchpad.net/ubuntu/maverick/+source/freetype/+bug/617019

... and 1 more

Scores

EPSS 0.0519

EPSS Percentile 89.7%

Classification

CWE

CWE-681

Status draft

Affected Products (9)

freetype/freetype < 2.4.2

canonical/ubuntu_linux

apple/iphone_os < 4.2

apple/mac_os_x < 10.6.5

apple/tvos < 4.1.0

Timeline

Published Aug 19, 2010

Tracked Since Feb 18, 2026