CVE - CVE-2010-3814

CVE-ID
CVE-2010-3814	Learn more at National Vulnerability Database (NVD) • Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, as demonstrated by a PDF document with a crafted embedded font.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602221 CONFIRM:http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=0edf0986f3be570f5bf90ff245a85c1675f5c9a4 CONFIRM:http://security-tracker.debian.org/tracker/CVE-2010-3814 CONFIRM:http://support.apple.com/kb/HT4456 CONFIRM:http://support.apple.com/kb/HT4581 APPLE:APPLE-SA-2010-11-22-1 URL:http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html APPLE:APPLE-SA-2011-03-21-1 URL:http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html DEBIAN:DSA-2155 URL:http://www.debian.org/security/2011/dsa-2155 MANDRIVA:MDVSA-2010:236 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2010:236 UBUNTU:USN-1013-1 URL:http://www.ubuntu.com/usn/USN-1013-1 BID:44643 URL:http://www.securityfocus.com/bid/44643 SECTRACK:1024767 URL:http://www.securitytracker.com/id?1024767 SECUNIA:42314 URL:http://secunia.com/advisories/42314 SECUNIA:43138 URL:http://secunia.com/advisories/43138 SECUNIA:48951 URL:http://secunia.com/advisories/48951 VUPEN:ADV-2010-3046 URL:http://www.vupen.com/english/advisories/2010/3046 VUPEN:ADV-2011-0246 URL:http://www.vupen.com/english/advisories/2011/0246
Date Entry Created
20101007	Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20101007)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE list, which standardizes names for security problems.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Common Vulnerabilities and Exposures

CVE-2010-3814