CVE-2010-2805

Priority
Description
The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before
2.4.2 does not properly validate certain position values, which allows
remote attackers to cause a denial of service (application crash) or
possibly execute arbitrary code via a crafted font file.
Assigned-to
mdeslaur
Notes
More Information

Updated: 2019-12-05 20:55:22 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)