mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-07 17:36:58 +02:00
0xMarcio
779 B
779 B
CVE-2014-9667
Description
sfnt/ttload.c in FreeType before 2.5.4 proceeds with offset+length calculations without restricting the values, which allows remote attackers to cause a denial of service (integer overflow and out-of-bounds read) or possibly have unspecified other impact via a crafted SFNT table.
POC
Reference
Github
No PoCs found on GitHub currently.