Security Advisory

CVE-2014-9675

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-02-08 11:00:00

Last updated 2024-08-06 13:55:04

Assigner mitre

State PUBLISHED

Description

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

← Browse all CVEs View on cve.org ↗