CVE-2009-0946

Priority
Description
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote
attackers to execute arbitrary code via vectors related to large values in
certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3)
cff/cffload.c.
Assigned-to
mdeslaur
Notes
mdeslaurreproducers don't crash freetype1
More Information

Updated: 2019-12-05 20:53:03 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)