CVE-2008-1808

Priority
Description
Multiple off-by-one errors in FreeType2 before 2.3.6 allow
context-dependent attackers to execute arbitrary code via (1) a crafted
table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction
in a TrueType Font (TTF) file, which triggers a heap-based buffer overflow.
Assigned-to
kees
Notes
Package
Upstream:released (2.3.6-1)
More Information

Updated: 2020-03-18 21:58:08 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)