CVE-2010-2806

Priority
Description
Array index error in the t42_parse_sfnts function in type42/t42parse.c in
FreeType before 2.4.2 allows remote attackers to cause a denial of service
(application crash) or possibly execute arbitrary code via negative size
values for certain strings in FontType42 font files, leading to a
heap-based buffer overflow.
Assigned-to
mdeslaur
Notes
More Information

Updated: 2019-12-05 20:55:22 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)