Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Compact Font Format (CFF) font file that triggers a heap-based buffer overflow, related to an "input stream position error" issue, a different vulnerability than CVE-2010-1797.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2011-01-07T22:00:00
Updated: 2011-01-12T10:00:00
Reserved: 2010-09-13T00:00:00
Link: CVE-2010-3311
JSON object: View
NVD Information
Status : Modified
Published: 2011-01-07T23:00:18.827
Modified: 2023-02-13T04:23:23.663
Link: CVE-2010-3311
JSON object: View
Redhat Information
No data.
CWE