CVE-2007-2754

EPSS 41.9%

freetype

發布日:2007/5/17修改日:2026/4/28

描述

Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.

受影響套件(3)

Debian/freetypefrom 0, < 2.2.1-6
Debian/freetypefrom 0, < 2.2.1-5+etch1
Debian/freetypefrom 0, < 2.1.7-8

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-2754