CVE-2011-3439

EPSS 8.3%

freetype - missing input sanitising

發布日:2011/11/11修改日:2026/4/28

描述

FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font in a document.

受影響套件(2)

Debian/freetypefrom 0, < 2.4.8-1
Debian/freetypefrom 0, < 2.3.7-2+lenny8

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3439