CVE-2010-2541 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-2541 PUBLISHED CVSS 6.800000190734863 MEDIUM

Buffer overflow in ftmulti.c in the ftmulti demo program in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.

EPSS 4.29% · 88.8th percentile

Risk Scores

CVSS v2.0

6.800000190734863

EPSS Score

4.29%

88.8th percentile

Affected Products

Vendor	Product	Versions
freetype	freetype	0
n/a	n/a	n/a
canonical	ubuntu_linux	9.04, 9.10, 10.04

Timeline

Aug 19, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Feb 13, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

https://bugzilla.redhat.com/show_bug.cgi?id=617342 url
https://bugs.launchpad.net/ubuntu/maverick/+source/freetype/+bug/617019 url
USN-972-1 vendor-advisory
http://freetype.sourceforge.net/index2.html#release-freetype-2.4.2 url
1024266 vdb
http://sourceforge.net/projects/freetype/files/freetype2/2.4.2/NEWS/view url
40982 third-party-advisory
RHSA-2010:0578 vendor-advisory
ADV-2010-2106 vdb
RHSA-2010:0577 vendor-advisory
48951 third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2010-2541 advisory

Open in Interactive Console →