CVE-2012-1132

CWE-119 — Buffer Overflow CWE-122 — Heap-based Buffer Overflow CWE-125 — Out-of-bounds Read CWE-190 — Integer Overflow14 documents9 sources

Severity

9.3CRITICAL

EPSS

3.0%

top 13.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Freetype Freetype Mozilla Firefox Mobile

Timeline

PublishedApr 25

Latest updateMay 13

Description

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via crafted dictionary data in a Type 1 font.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/firefox_mobile10.0.3+12

▶Debianfreetype< 2.4.9-1+3

▶NVDfreetype/freetype2.4.8+43

🔴Vulnerability Details

GHSA

GHSA-5f29-p234-6p39: FreeType before 2↗2022-05-13

▶

OSV

CVE-2012-1132: FreeType before 2↗2012-04-25

▶

CVEList

CVE-2012-1132: FreeType before 2↗2012-04-25

▶

💥Exploits & PoCs

Exploit-DB

Google Chrome 19.0.1084.52 - 'metro_driver.dll' DLL Loading Arbitrary Code Execution↗2012-06-26

▶

📋Vendor Advisories

Red Hat

(64-bit): Multiple integer overflows, leading to DoS or possibly other unspecified impact↗2012-06-26

▶

Red Hat

libxslt: DoS when reading unexpected DTD nodes in XSLT↗2012-06-26

▶

Ubuntu

FreeType vulnerabilities↗2012-03-23

▶

Red Hat

freetype: heap buffer over-read in Type1 parser parse_subrs() (#35606)↗2012-02-23

▶

Debian

CVE-2012-1132: freetype - FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other...↗2012

▶

💬Community

Bugzilla

CVE-2012-{1126,1127,1128,1130,1131,1132,1133,1134,1135,1136,1137,1138,1139,1140,1141,1142,1143,1144} freetype: multiple vulnerabilities [fedora-all]↗2012-03-23

▶

Bugzilla

CVE-2012-1132 freetype: heap buffer over-read in Type1 parser parse_subrs() (#35606)↗2012-03-06

▶