CVE-2014-9660 (retired)

Priority
Description
The _bdf_parse_glyphs function in bdf/bdflib.c in FreeType before 2.5.4
does not properly handle a missing ENDCHAR record, which allows remote
attackers to cause a denial of service (NULL pointer dereference) or
possibly have unspecified other impact via a crafted BDF font.
Assigned-to
mdeslaur
More Information

Updated: 2019-09-19 15:51:32 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)