Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeType‘f2_hintmap_build’函数基于栈的缓冲区错误漏洞
Vulnerability Description
FreeType是FreeType团队开发的一个基于C语言的、高质量的且可移植的开源字体引擎库,它可用来将字符栅格化并映射成位图以及提供其他字体相关业务的支持。 FreeType 2.5.2及之前版本中的cff/cf2hints.c文件的‘f2_hintmap_build’函数存在基于栈的缓冲区溢出漏洞。远程攻击者可利用该漏洞造成拒绝服务(崩溃),也可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A