CVE-2012-1126
published 2012-04-25CVE-2012-1126: FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap…
critical10CVSS 3.1
AVNACLAuNCCICAC
FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via crafted property data in a BDF font.
Affected
62 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | freetype | < freetype 2.4.9-1 (bookworm) | freetype 2.4.9-1 (bookworm) |
| freetype | freetype | <= 2.4.8 | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
| freetype | freetype | — | — |
CVSS provenance
nvd10.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL