CVE - CVE-2007-2754

CVE-ID
CVE-2007-2754	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1018088 URL:http://www.securitytracker.com/id?1018088 MISC:102967 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-102967-1~~ (Obsolete source) MISC:103171 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-103171-1~~ (Obsolete source) MISC:200033 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-66-200033-1~~ (Obsolete source) MISC:2007-0019 URL:~~http://www.trustix.org/errata/2007/0019/~~ (Obsolete source - check if archived by the Wayback Machine) MISC:20070524 FLEA-2007-0020-1: freetype URL:http://www.securityfocus.com/archive/1/469463/100/200/threaded MISC:20070602-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.asc MISC:20070613 FLEA-2007-0025-1: openoffice.org URL:http://www.securityfocus.com/archive/1/471286/30/6180/threaded MISC:24074 URL:http://www.securityfocus.com/bid/24074 MISC:25350 URL:http://secunia.com/advisories/25350 MISC:25353 URL:http://secunia.com/advisories/25353 MISC:25386 URL:http://secunia.com/advisories/25386 MISC:25463 URL:http://secunia.com/advisories/25463 MISC:25483 URL:http://secunia.com/advisories/25483 MISC:25609 URL:http://secunia.com/advisories/25609 MISC:25612 URL:http://secunia.com/advisories/25612 MISC:25654 URL:http://secunia.com/advisories/25654 MISC:25705 URL:http://secunia.com/advisories/25705 MISC:25808 URL:http://secunia.com/advisories/25808 MISC:25894 URL:http://secunia.com/advisories/25894 MISC:25905 URL:http://secunia.com/advisories/25905 MISC:26129 URL:http://secunia.com/advisories/26129 MISC:26305 URL:http://secunia.com/advisories/26305 MISC:28298 URL:http://secunia.com/advisories/28298 MISC:30161 URL:http://secunia.com/advisories/30161 MISC:35074 URL:http://secunia.com/advisories/35074 MISC:35200 URL:http://secunia.com/advisories/35200 MISC:35204 URL:http://secunia.com/advisories/35204 MISC:35233 URL:http://secunia.com/advisories/35233 MISC:36509 URL:~~http://osvdb.org/36509~~ (Obsolete source) MISC:ADV-2007-1894 URL:~~http://www.vupen.com/english/advisories/2007/1894~~ (Obsolete source) MISC:ADV-2007-2229 URL:~~http://www.vupen.com/english/advisories/2007/2229~~ (Obsolete source) MISC:ADV-2008-0049 URL:~~http://www.vupen.com/english/advisories/2008/0049~~ (Obsolete source) MISC:ADV-2009-1297 URL:~~http://www.vupen.com/english/advisories/2009/1297~~ (Obsolete source) MISC:APPLE-SA-2007-11-14 URL:http://lists.apple.com/archives/Security-announce/2007/Nov/msg00003.html MISC:APPLE-SA-2009-05-12 URL:http://lists.apple.com/archives/security-announce/2009/May/msg00002.html MISC:DSA-1302 URL:http://www.debian.org/security/2007/dsa-1302 MISC:DSA-1334 URL:http://www.debian.org/security/2007/dsa-1334 MISC:FEDORA-2009-5558 URL:https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01316.html MISC:FEDORA-2009-5644 URL:https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01401.html MISC:GLSA-200705-22 URL:http://www.gentoo.org/security/en/glsa/glsa-200705-22.xml MISC:GLSA-200707-02 URL:http://www.gentoo.org/security/en/glsa/glsa-200707-02.xml MISC:GLSA-200805-07 URL:http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml MISC:MDKSA-2007:121 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2007:121~~ (Obsolete source) MISC:OpenPKG-SA-2007.018 URL:http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.018.html MISC:RHSA-2007:0403 URL:http://www.redhat.com/support/errata/RHSA-2007-0403.html MISC:RHSA-2009:0329 URL:http://www.redhat.com/support/errata/RHSA-2009-0329.html MISC:RHSA-2009:1062 URL:http://www.redhat.com/support/errata/RHSA-2009-1062.html MISC:SUSE-SA:2007:041 URL:http://www.novell.com/linux/security/advisories/2007_41_freetype2.html MISC:TA09-133A URL:http://www.us-cert.gov/cas/techalerts/TA09-133A.html MISC:USN-466-1 URL:http://www.ubuntu.com/usn/usn-466-1 MISC:[ft-devel] 20070427 Bug in fuzzed TTF file URL:http://lists.gnu.org/archive/html/freetype-devel/2007-04/msg00041.html MISC:http://cvs.savannah.nongnu.org/viewvc/freetype2/src/truetype/ttgload.c?root=freetype&r1=1.177&r2=1.178 URL:http://cvs.savannah.nongnu.org/viewvc/freetype2/src/truetype/ttgload.c?root=freetype&r1=1.177&r2=1.178 MISC:http://support.apple.com/kb/HT3549 URL:http://support.apple.com/kb/HT3549 MISC:http://support.avaya.com/elmodocs2/security/ASA-2007-330.htm URL:http://support.avaya.com/elmodocs2/security/ASA-2007-330.htm MISC:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=240200 URL:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=240200 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=502565 URL:https://bugzilla.redhat.com/show_bug.cgi?id=502565 MISC:https://issues.rpath.com/browse/RPL-1390 URL:https://issues.rpath.com/browse/RPL-1390 MISC:oval:org.mitre.oval:def:11325 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11325 MISC:oval:org.mitre.oval:def:5532 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5532
Assigning CNA
Red Hat, Inc.
Date Record Created
20070517	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070517)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)