Out-of-bounds Read Vulnerability in FreeType

Out-of-bounds Read Vulnerability in FreeType

CVE-2014-9664 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

FreeType before 2.5.4 does not check for the end of the data during certain parsing actions, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted Type42 font, related to type42/t42parse.c and type1/t1load.c.

Learn more about our Web Application Penetration Testing UK.