Your submission was sent successfully! Close

CVE-2008-1806

Published: 16 June 2008

Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary (PFB) file, which triggers a heap-based buffer overflow.

Priority

Medium

Status

Package Release Status
freetype
Launchpad, Ubuntu, Debian
Upstream
Released (2.3.6-1)