CVE-2014-9746

Published: 7 June 2016

The (1) t1_parse_font_matrix function in type1/t1load.c, (2) cid_parse_font_matrix function in cid/cidload.c, (3) t42_parse_font_matrix function in type42/t42parse.c, and (4) ps_parser_load_field function in psaux/psobjs.c in FreeType before 2.5.4 do not check return values, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via a crafted font.

Priority

CVSS 3 base score: 9.8

Status

Package	Release	Status
freetype Launchpad, Ubuntu, Debian	upstream	Needs triage
	precise	Released (2.4.8-1ubuntu2.3)
	trusty	Released (2.5.2-1ubuntu2.5)
	vivid	Released (2.5.2-2ubuntu3.1)

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9746
http://www.openwall.com/lists/oss-security/2015/09/25/4
https://ubuntu.com/security/notices/USN-2739-1
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›