CVE-2009-0946 — Integer Overflow or Wraparound in Freetype

CWE-190 — Integer Overflow or Wraparound9 documents8 sources

Severity

7.5HIGHNVD

EPSS

16.4%

top 5.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Freetype Apple Iphone OS Apple MAC OS X +6 more

Timeline

PublishedApr 17

Latest updateMay 2

Description

Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages8 packages

▶Debianfreetype/freetype< 2.3.9-4.1+3

▶NVDfreetype/freetype2.3.9

▶NVDapple/mac_os_x10.6.0 — 10.6.4+2

▶NVDapple/iphone_os1.0.0 — 2.2.1

▶NVDapple/mac_os_x_server10.6.0 — 10.6.4+2

Also affects: Debian Linux 4.0, 5.0, 6.0, Ubuntu Linux 6.06, 8.04, 8.10, 9.04

Patches

Patch: git.savannah.gnu.org ↗Patch: git.savannah.gnu.org ↗Patch: git.savannah.gnu.org ↗

🔴Vulnerability Details

GHSA

GHSA-g82w-w4fh-33xc: Multiple integer overflows in FreeType 2↗2022-05-02

▶

OSV

CVE-2009-0946: Multiple integer overflows in FreeType 2↗2009-04-17

▶

CVEList

CVE-2009-0946: Multiple integer overflows in FreeType 2↗2009-04-17

▶

📋Vendor Advisories

Ubuntu

FreeType vulnerability↗2009-04-27

▶

Red Hat

freetype: multiple integer overflows↗2009-03-20

▶

Debian

CVE-2009-0946: freetype - Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers ...↗2009

▶

💬Community

Bugzilla

CVE-2009-0946 freetype: multiple integer overflows↗2009-05-26

▶

Bugzilla

CVE-2009-0946 freetype: multiple integer overflows↗2009-03-20

▶