CVE-2007-2754

EPSS 41.9%

freetype

Published: 5/17/2007Modified: 4/28/2026

Also known as:DEBIAN-CVE-2007-2754

Description

Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.

Affected packages (3)

Debian/freetypefrom 0, < 2.2.1-6
Debian/freetypefrom 0, < 2.2.1-5+etch1
Debian/freetypefrom 0, < 2.1.7-8

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-2754