CVE-2015-9383
Published: 03 September 2019
FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.
Priority
CVSS 3 base score: 6.5
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9383
- http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=57cbb8c148999ba8f14ed53435fc071ac9953afd
- https://savannah.nongnu.org/bugs/?46346
- https://usn.ubuntu.com/usn/usn-4126-1
- https://usn.ubuntu.com/usn/usn-4126-2
- NVD
- Launchpad
- Debian