mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-30 21:39:16 +02:00
773 B
773 B
CVE-2014-9660
Description
The _bdf_parse_glyphs function in bdf/bdflib.c in FreeType before 2.5.4 does not properly handle a missing ENDCHAR record, which allows remote attackers to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted BDF font.
POC
Reference
Github
No PoCs found on GitHub currently.