CVE-2010-3855

Published: 22 October 2010

Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.

Priority

Status

Package	Release	Status
freetype Launchpad, Ubuntu, Debian	Upstream	Needs triage







	Patches: Upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=59eb9f8cfe7d1df379a2318316d1f04f80fba54a Upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=16bd51c81929354a88a0ea0df04e08e5d8bffd04 (backport) Upstream: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=b3e6df69e6d112af739f3ad08cb7cafce32683b2 (backport)

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3855
http://secunia.com/advisories/41738
https://ubuntu.com/security/notices/USN-1013-1
NVD
Launchpad
Debian

Bugs

https://savannah.nongnu.org/bugs/?31310
https://bugzilla.redhat.com/show_bug.cgi?id=645275

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›