CVE-2010-3311

high

Description

CVE-2010-3311 freetype: Input stream position error by processing Compact Font Format (CFF) font files

References

https://rhn.redhat.com/errata/RHSA-2010-0737.html

https://bugzilla.redhat.com/show_bug.cgi?id=623625

https://rhn.redhat.com/errata/RHSA-2010-0736.html

http://www.securityfocus.com/bid/43700

http://www.redhat.com/support/errata/RHSA-2010-0864.html

http://www.ubuntu.com/usn/USN-1013-1

http://www.debian.org/security/2010/dsa-2116

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

http://www.mandriva.com/security/advisories?name=MDVSA-2010:201

http://secunia.com/advisories/48951

https://access.redhat.com/errata/RHSA-2010:0737

https://access.redhat.com/errata/RHSA-2010:0736

https://access.redhat.com/security/cve/CVE-2010-3311

https://access.redhat.com/errata/RHSA-2010:0864

Details

Source: MITRE

Published: 2011-01-07

Updated: 2023-02-02

Type: CWE-189

Risk Information

CVSS v2

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH