Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2014-2240

Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.

  • Published: Mar 12, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-2240
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
freetype / freetype - 2.5.2.x
freetype / freetype 2.0.3 2.0.3.x
freetype / freetype 2.4.0 2.4.0.x
freetype / freetype 2.4.2 2.4.2.x
freetype / freetype 2.3.6 2.3.6.x
freetype / freetype 2.4.11 2.4.11.x
freetype / freetype 2.1.9 2.1.9.x
freetype / freetype 2.1.10 2.1.10.x
freetype / freetype 2.5.1 2.5.1.x
freetype / freetype 2.3.4 2.3.4.x
freetype / freetype 2.0.1 2.0.1.x
freetype / freetype 2.3.5 2.3.5.x
freetype / freetype 2.4.12 2.4.12.x
freetype / freetype 2.1 2.1.x
freetype / freetype 2.1.5 2.1.5.x
freetype / freetype 2.3.10 2.3.10.x
freetype / freetype 2.4.9 2.4.9.x
freetype / freetype 1.3.1 1.3.1.x
freetype / freetype 2.4.10 2.4.10.x
freetype / freetype 2.5 2.5.x
freetype / freetype 2.4.4 2.4.4.x
freetype / freetype 2.4.6 2.4.6.x
freetype / freetype 2.1.8 2.1.8.x
freetype / freetype 2.2.1 2.2.1.x
freetype / freetype 2.1.3 2.1.3.x
freetype / freetype 2.3.3 2.3.3.x
freetype / freetype 2.1.6 2.1.6.x
freetype / freetype 2.3.0 2.3.0.x
freetype / freetype 2.3.1 2.3.1.x
freetype / freetype 2.0.5 2.0.5.x
freetype / freetype 2.4.1 2.4.1.x
freetype / freetype 2.4.3 2.4.3.x
freetype / freetype 2.0.7 2.0.7.x
freetype / freetype 2.0.9 2.0.9.x
freetype / freetype 2.1.8-rc1 2.1.8-rc1.x
freetype / freetype 2.3.7 2.3.7.x
freetype / freetype 2.0.6 2.0.6.x
freetype / freetype 2.0.4 2.0.4.x
freetype / freetype 2.3.8 2.3.8.x
freetype / freetype 2.3.11 2.3.11.x
freetype / freetype 2.3.2 2.3.2.x
freetype / freetype 2.0.2 2.0.2.x
freetype / freetype 2.0.8 2.0.8.x
freetype / freetype 2.3.12 2.3.12.x
freetype / freetype 2.3.9 2.3.9.x
freetype / freetype 2.4.8 2.4.8.x
freetype / freetype 2.4.5 2.4.5.x
freetype / freetype 2.1.7 2.1.7.x
freetype / freetype 2.4.7 2.4.7.x
freetype / freetype 2.1.4 2.1.4.x
freetype / freetype 2.0.0 2.0.0.x
freetype / freetype 2.2.0 2.2.0.x