Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2017-8105

UNKNOWN
Published 2017-04-24T18:00:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2017-8105. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed CRITICAL

GHSA-3f3f-jhpf-w85x

Advisory Details

FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c.

CVSS Scoring

CVSS Score

9.0

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2017-8105
WEB https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=935
WEB https://security.gentoo.org/glsa/201706-14
WEB https://www.oracle.com/security-alerts/cpuapr2020.html
WEB https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
WEB http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=f958c48ee431bef8d4d466b40c9cb2d4dbcb7791
WEB http://www.debian.org/security/2017/dsa-3839
WEB http://www.securityfocus.com/bid/99093

Advisory provided by GitHub Security Advisory Database. Published: May 13, 2022, Modified: May 13, 2022

References

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=f958c48ee431bef8d4d466b40c9cb2d4dbcb7791
https://security.gentoo.org/glsa/201706-14
http://www.securityfocus.com/bid/99093
http://www.debian.org/security/2017/dsa-3839
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=935
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
https://www.oracle.com/security-alerts/cpuapr2020.html
Published: 2017-04-24T18:00:00
Last Modified: 2024-08-05T16:27:22.193Z
Copied to clipboard!