CVE-2006-0747

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values.

References

ftp://patches.sgi.com/support/free/security/advisories/20060701-01-U

http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

http://lists.suse.com/archive/suse-security-announce/2006-Jun/0012.html

http://secunia.com/advisories/20525

http://secunia.com/advisories/20591

http://secunia.com/advisories/20638

http://secunia.com/advisories/20791

http://secunia.com/advisories/21062

http://secunia.com/advisories/21135

http://secunia.com/advisories/21385

http://secunia.com/advisories/21701

http://secunia.com/advisories/23939

http://secunia.com/advisories/35074

http://securitytracker.com/id?1016522

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102705-1

http://support.apple.com/kb/HT3549

http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm

http://www.debian.org/security/2006/dsa-1095

http://www.mandriva.com/security/advisories?name=MDKSA-2006:099

http://www.redhat.com/support/errata/RHSA-2006-0500.html

http://www.securityfocus.com/archive/1/436836/100/0/threaded

http://www.securityfocus.com/bid/18326

http://www.us-cert.gov/cas/techalerts/TA09-133A.html

http://www.vupen.com/english/advisories/2007/0381

http://www.vupen.com/english/advisories/2009/1297

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=183676

https://issues.rpath.com/browse/RPL-429

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9508

https://usn.ubuntu.com/291-1/

Details

Source: MITRE

Published: 2006-05-23

Updated: 2018-10-19

Type: CWE-189

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:* versions up to 2.1 (inclusive)

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
38743Mac OS X Multiple Vulnerabilities (Security Update 2009-002)NessusMacOS X Local Security Checks
critical
27863Ubuntu 5.04 / 5.10 / 6.06 LTS : freetype vulnerabilities (USN-291-1)NessusUbuntu Local Security Checks
high
27224openSUSE 10 Security Update : freetype2 (freetype2-1608)NessusSuSE Local Security Checks
high
22637Debian DSA-1095-1 : freetype - integer overflowsNessusDebian Local Security Checks
high
22503FreeBSD : freetype -- LWFN Files Buffer Overflow Vulnerability (b975763f-5210-11db-8f1a-000a48049292)NessusFreeBSD Local Security Checks
high
22068RHEL 2.1 / 3 / 4 : freetype (RHSA-2006:0500)NessusRed Hat Local Security Checks
high
22064CentOS 3 / 4 : freetype (CESA-2006:0500)NessusCentOS Local Security Checks
high
21715Mandrake Linux Security Advisory : freetype2 (MDKSA-2006:099-1)NessusMandriva Local Security Checks
high