CVE-2014-9667 (retired)

Priority
Description
sfnt/ttload.c in FreeType before 2.5.4 proceeds with offset+length
calculations without restricting the values, which allows remote attackers
to cause a denial of service (integer overflow and out-of-bounds read) or
possibly have unspecified other impact via a crafted SFNT table.
Assigned-to
mdeslaur
More Information

Updated: 2019-08-23 09:04:56 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)