CVE-2008-1808
EPSS 2.6%發布日:2008/6/16修改日:2026/4/28
也稱為:DEBIAN-CVE-2008-1808
描述
Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer overflow.
受影響套件(1)
- Debian/freetypefrom 0, < 2.3.6-1