ByteOS Network

CVE Vulnerability Details :

CVE-2010-2519

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-19 Aug, 2010 | 17:43

Updated At-07 Aug, 2024 | 02:39

▼CVE Numbering Authority (CNA)

Heap-based buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted length value in a POST fragment header in a font file.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.ubuntu.com/usn/USN-963-1	vendor-advisory x_refsource_UBUNTU
http://support.apple.com/kb/HT4435	x_refsource_CONFIRM
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=b2ea64bcc6c385a8e8318f9c759450a07df58b6d	x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=613194	x_refsource_CONFIRM
http://lists.nongnu.org/archive/html/freetype/2010-07/msg00001.html	mailing-list x_refsource_MLIST
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html	vendor-advisory x_refsource_APPLE
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=5ef20c8c1d4de12a84b50ba497c2a358c90ec44b	x_refsource_CONFIRM
http://marc.info/?l=oss-security&m=127909326909362&w=2	mailing-list x_refsource_MLIST
https://savannah.nongnu.org/bugs/?30306	x_refsource_CONFIRM
http://www.debian.org/security/2010/dsa-2070	vendor-advisory x_refsource_DEBIAN
http://marc.info/?l=oss-security&m=127905701201340&w=2	mailing-list x_refsource_MLIST
http://securitytracker.com/id?1024266	vdb-entry x_refsource_SECTRACK
http://www.redhat.com/support/errata/RHSA-2010-0578.html	vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2010:137	vendor-advisory x_refsource_MANDRIVA
http://secunia.com/advisories/48951	third-party-advisory x_refsource_SECUNIA

Hyperlink: http://www.ubuntu.com/usn/USN-963-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://support.apple.com/kb/HT4435

Resource:

x_refsource_CONFIRM

Hyperlink: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=b2ea64bcc6c385a8e8318f9c759450a07df58b6d

Resource:

x_refsource_CONFIRM

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=613194

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.nongnu.org/archive/html/freetype/2010-07/msg00001.html

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

Resource:

vendor-advisory

x_refsource_APPLE

Hyperlink: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=5ef20c8c1d4de12a84b50ba497c2a358c90ec44b

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=oss-security&m=127909326909362&w=2

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: https://savannah.nongnu.org/bugs/?30306

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.debian.org/security/2010/dsa-2070

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://marc.info/?l=oss-security&m=127905701201340&w=2

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://securitytracker.com/id?1024266

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://www.redhat.com/support/errata/RHSA-2010-0578.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2010:137

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://secunia.com/advisories/48951

Resource:

third-party-advisory

x_refsource_SECUNIA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.ubuntu.com/usn/USN-963-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://support.apple.com/kb/HT4435	x_refsource_CONFIRM x_transferred
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=b2ea64bcc6c385a8e8318f9c759450a07df58b6d	x_refsource_CONFIRM x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=613194	x_refsource_CONFIRM x_transferred
http://lists.nongnu.org/archive/html/freetype/2010-07/msg00001.html	mailing-list x_refsource_MLIST x_transferred
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html	vendor-advisory x_refsource_APPLE x_transferred
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=5ef20c8c1d4de12a84b50ba497c2a358c90ec44b	x_refsource_CONFIRM x_transferred
http://marc.info/?l=oss-security&m=127909326909362&w=2	mailing-list x_refsource_MLIST x_transferred
https://savannah.nongnu.org/bugs/?30306	x_refsource_CONFIRM x_transferred
http://www.debian.org/security/2010/dsa-2070	vendor-advisory x_refsource_DEBIAN x_transferred
http://marc.info/?l=oss-security&m=127905701201340&w=2	mailing-list x_refsource_MLIST x_transferred
http://securitytracker.com/id?1024266	vdb-entry x_refsource_SECTRACK x_transferred
http://www.redhat.com/support/errata/RHSA-2010-0578.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2010:137	vendor-advisory x_refsource_MANDRIVA x_transferred
http://secunia.com/advisories/48951	third-party-advisory x_refsource_SECUNIA x_transferred