CVE-2018-6942

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.

References

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00054.html

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5736

https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=29c759284e305ec428703c9a5831d0b1fc3497ef

https://usn.ubuntu.com/3572-1/

https://www.oracle.com/security-alerts/cpuapr2020.html

Details

Source: MITRE

Published: 2018-02-13

Updated: 2021-01-26

Type: CWE-476

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:* versions up to 2.9 (inclusive)

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
136887openSUSE Security Update : freetype2 (openSUSE-2020-704)NessusSuSE Local Security Checks
medium
136800SUSE SLED15 / SLES15 Security Update : freetype2 (SUSE-SU-2020:1353-1)NessusSuSE Local Security Checks
medium
121955Photon OS 2.0: Freetype2 PHSA-2018-2.0-0058NessusPhotonOS Local Security Checks
medium
121846Photon OS 1.0: Freetype2 PHSA-2018-1.0-0148NessusPhotonOS Local Security Checks
medium
111308Photon OS 2.0 : freetype2 / binutils (PhotonOS-PHSA-2018-2.0-0058) (deprecated)NessusPhotonOS Local Security Checks
medium
111274Photon OS 1.0 : freetype2 / binutils (PhotonOS-PHSA-2018-1.0-0148) (deprecated)NessusPhotonOS Local Security Checks
medium
106905Fedora 27 : freetype (2018-07a3e36499)NessusFedora Local Security Checks
medium
106839Ubuntu 17.10 : freetype vulnerability (USN-3572-1)NessusUbuntu Local Security Checks
medium