CVE-2014-9675 — Sensitive Information Exposure in Freetype

CWE-264 CWE-200 — Sensitive Information Exposure10 documents9 sources

Severity

5.0MEDIUMNVD

EPSS

2.1%

top 15.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Freetype Canonical Ubuntu Linux Debian Linux +8 more

Timeline

PublishedFeb 8

Latest updateMay 14

Description

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages7 packages

▶Debianfreetype/freetype< 2.5.2-3+3

▶NVDfreetype/freetype2.5.3

▶NVDopensuse/opensuse13.1, 13.2+1

▶NVDredhat/enterprise_linux_server6.0, 7.0+1

▶NVDredhat/enterprise_linux_desktop6.0, 7.0+1

Also affects: Debian Linux 7.0, Fedora 20, 21, Ubuntu Linux 10.04, 12.04, 14.04, 14.10, 15.04, Enterprise Linux 6.6.z, 7.1

🔴Vulnerability Details

GHSA

GHSA-gp42-2rqf-vfq6: bdf/bdflib↗2022-05-14

▶

OSV

CVE-2014-9675: bdf/bdflib↗2015-02-08

▶

CVEList

CVE-2014-9675: bdf/bdflib↗2015-02-08

▶

📋Vendor Advisories

Android

CVE-2014-9675: Android Security Bulletin 2016-11-01 CVE: CVE-2014-9675 Severity: HIGH Affected AOSP versions: 4↗2016-11-01

▶

Ubuntu

FreeType vulnerabilities↗2015-02-24

▶

Red Hat

freetype: information leak in _bdf_add_property()↗2015-02-08

▶

Debian

CVE-2014-9675: freetype - bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifyin...↗2014

▶

💬Community

Bugzilla

CVE-2014-9675 freetype: information leak in _bdf_add_property()↗2015-02-10

▶

Bugzilla

CVE-2014-9675 freetype: bypass the ASLR protection mechanism via a crafted BDF font [fedora-all]↗2015-02-10

▶