CVE-2010-2808Classic Buffer Overflow in Freetype

CWE-120Classic Buffer OverflowCWE-121Stack-based Buffer Overflow11 documents8 sources
Severity
6.8MEDIUMNVD
EPSS
7.8%
top 8.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
FreetypeApple Iphone OSApple MAC OS X+3 more
Timeline
PublishedAug 19
Latest updateMay 13

Description

Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Adobe Type 1 Mac Font File (aka LWFN) font.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages6 packages

debiandebian/freetype< freetype 2.4.2-1 (bookworm)
NVDfreetype/freetype< 2.4.2
Debianfreetype/freetype< 2.4.2-1+3
NVDapple/tvos< 4.1.0
NVDapple/mac_os_x< 10.6.5

Also affects: Ubuntu Linux 10.04, 6.06, 8.04, 9.04, 9.10

Patches

Patch: git.savannah.gnu.orgPatch: marc.infoPatch: marc.info

🔴Vulnerability Details

2
GHSA
GHSA-gmf8-rm42-fhx8: Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs2022-05-13
OSV
CVE-2010-2808: Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs2010-08-19

💥Exploits & PoCs

1
Exploit-DB
Sygate Personal Firewall 5.6 build 2808 - ActiveX with DEP Bypass2010-06-11

📋Vendor Advisories

3
Ubuntu
FreeType vulnerabilities2010-08-17
Red Hat
FreeType: Stack-based buffer overflow by processing certain LWFN fonts2010-08-05
Debian
CVE-2010-2808: freetype - Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeT...2010

💬Community

4
Bugzilla
CVE-2014-9673 freetype: integer signedness error in Mac_Read_POST_Resource() leading to heap-based buffer overflow2015-02-10
Bugzilla
CVE-2014-9674 freetype: multiple integer overflows Mac_Read_POST_Resource() leading to heap-based buffer overflows2015-02-10
Bugzilla
CVE-2010-2808 CVE-2010-2806 CVE-2010-2805 CVE-2010-3311 freetype various flaws [fedora-all]2010-09-29
Bugzilla
CVE-2010-2808 FreeType: Stack-based buffer overflow by processing certain LWFN fonts2010-08-06