CVE-2014-9675 (retired)

Priority
Description
bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only
verifying that an initial substring is present, which allows remote
attackers to discover heap pointer values and bypass the ASLR protection
mechanism via a crafted BDF font.
Assigned-to
mdeslaur
More Information

Updated: 2019-09-19 15:51:33 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)