mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-07 13:26:41 +02:00
0xMarcio
773 B
773 B
CVE-2014-9660
Description
The _bdf_parse_glyphs function in bdf/bdflib.c in FreeType before 2.5.4 does not properly handle a missing ENDCHAR record, which allows remote attackers to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted BDF font.
POC
Reference
Github
No PoCs found on GitHub currently.