CVE-2008-1807
EPSS 5.9%發布日:2008/6/16修改日:2026/4/28
描述
FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary (PFB) file, which triggers a free of arbitrary memory locations, leading to memory corruption.
受影響套件(1)
- Debian/freetypefrom 0, < 2.3.6-1