CVE-2014-9668 (retired)

Priority
Description
The woff_open_font function in sfnt/sfobjs.c in FreeType before 2.5.4
proceeds with offset+length calculations without restricting length values,
which allows remote attackers to cause a denial of service (integer
overflow and heap-based buffer overflow) or possibly have unspecified other
impact via a crafted Web Open Font Format (WOFF) file.
Assigned-to
mdeslaur
More Information

Updated: 2019-09-19 15:51:32 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)