CVE-2014-9670 — Integer Overflow or Wraparound in Freetype
Severity
4.3MEDIUMNVD
EPSS
5.0%
top 10.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 8
Latest updateMay 14
Description
Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF file that specifies negative values for the first column and first row.
CVSS vector
AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9
Affected Packages8 packages
Also affects: Debian Linux 7.0, Fedora 20, 21, Ubuntu Linux 10.04, 12.04, 14.04, 14.10, 15.04, Enterprise Linux 6.6.z, 7.1
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-vrhc-2m3r-v6qm: Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread↗2022-05-14
CVEList▶
CVE-2014-9670: Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread↗2015-02-08
OSV▶
CVE-2014-9670: Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread↗2015-02-08
📋Vendor Advisories
3💬Community
2Bugzilla▶
CVE-2014-9656 CVE-2014-9657 CVE-2014-9661 CVE-2014-9660 CVE-2014-9667 CVE-2014-9666 CVE-2014-9665 CVE-2014-9664 CVE-2014-9669 CVE-2014-9668 CVE-2014-9662 CVE-2014-9658 CVE-2014-9659 CVE-2014-9663 CVE-↗2015-02-10
Bugzilla▶
CVE-2014-9670 freetype: integer overflow in pcf_get_encodings() leading to NULL pointer dereference↗2015-02-10