FreeType Versions Prior to 2.4.11 Multiple Remote Security Vulnerabilities

FreeType is prone to multiple memory-corruption vulnerabilities and a denial-of-service vulnerability:

1. An out-of-bounds read issue
2. An out-of-bounds write issue
3. A NULL-pointer dereference issue

Remote attackers can exploit these issues to execute arbitrary code in the context of the application or cause denial-of-service conditions.

FreeType versions prior to 2.4.11 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus