CVE-2008-1808 (retired)

Priority
Description
Multiple off-by-one errors in FreeType2 before 2.3.6 allow
context-dependent attackers to execute arbitrary code via (1) a crafted
table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction
in a TrueType Font (TTF) file, which triggers a heap-based buffer overflow.
Assigned-to
kees
Package
Upstream:released (2.3.6-1)
More Information

Updated: 2019-03-26 11:43:47 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)