CVE-2014-9661 (retired)

Priority
Description
type42/t42parse.c in FreeType before 2.5.4 does not consider that scanning
can be incomplete without triggering an error, which allows remote
attackers to cause a denial of service (use-after-free) or possibly have
unspecified other impact via a crafted Type42 font.
Assigned-to
mdeslaur
More Information

Updated: 2019-08-23 09:04:56 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)