CVE search results

1 – 10 of 98 results

Detailed view

Sort by:

CVE-2025-27363

Medium priority

Fixed

An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable...

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	Not affected	Fixed	Fixed	Fixed	Fixed

CVE-2025-23022

Medium priority

Vulnerable

FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable

CVE-2022-31782

Medium priority

Some fixes available 3 of 4

ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	—	Fixed	Fixed	Fixed	Not affected

CVE-2022-27406

Low priority

Some fixes available 4 of 6

FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	Not affected	Fixed	Fixed	Fixed	Fixed

CVE-2022-27405

Low priority

Some fixes available 3 of 4

FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	—	Fixed	Fixed	Fixed	Not affected

CVE-2022-27404

Medium priority

Some fixes available 3 of 4

FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	—	Fixed	Fixed	Fixed	Not affected

CVE-2020-15999

High priority

Some fixes available 15 of 16

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

18 affected packages

android, chromium-browser, firefox, freetype, godot...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
android	Not in release	Not in release	Not in release	Not in release	Needs evaluation
chromium-browser	Not affected	Not affected	Not affected	Fixed	Fixed
firefox	Not affected	Not affected	Not affected	Not affected	Not affected
freetype	Fixed	Fixed	Fixed	Fixed	Fixed
godot	Not affected	Not affected	Not affected	Not in release	Not in release
graphicsmagick	Not affected	Not affected	Not affected	Not affected	Not affected
musescore	Not in release	Not in release	Not affected	Not affected	Not affected
openjdk-12	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-13	Not in release	Not in release	Not affected	Not in release	Not in release
openjdk-15	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-lts	Not affected	Not affected	Not affected	Not affected	Not in release
oxide-qt	Not in release	Not in release	Not in release	Not in release	Not affected
paraview	Not affected	Not affected	Not affected	Not affected	Not affected
qtbase-opensource-src	Not affected	Not affected	Not affected	Not affected	Not affected
qtbase-opensource-src-gles	Not affected	Not affected	Not affected	Not in release	Not affected
texlive-bin	Not affected	Not affected	Not affected	Not affected	Not affected
texmaker	Not affected	Not affected	Not affected	Not affected	Not affected
thunderbird	Not affected	Not affected	Not affected	Not affected	Not affected

CVE-2015-9383

Medium priority

Fixed

FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	—	—	—	Not affected	Fixed

CVE-2015-9382

Medium priority

Fixed

FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	—	—	—	Not affected	Not affected

CVE-2015-9381

Low priority

Fixed

FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c.

1 affected package

freetype

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
freetype	—	—	—	Not affected	Not affected

Export to JSON

Results by page:

Search CVE reports