CVE-2010-3814

Priority
Description
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in
FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary
code or cause a denial of service (application crash) via a crafted SHZ
bytecode instruction, related to TrueType opcodes, as demonstrated by a PDF
document with a crafted embedded font.
References
Notes
 mdeslaur> dapper doesn't look affected
Package
Upstream:needs-triage
Patches:
Upstream:http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=0edf0986f3be570f5bf90ff245a85c1675f5c9a4
More Information

Updated: 2018-09-26 06:53:38 UTC (commit 2c85db1cbbe986be0a0659e41e8f961058e5adca)