ASB-A-271680254
See a problem?- Import Source
- https://storage.googleapis.com/android-osv-test/ASB-A-271680254.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/ASB-A-271680254
- Aliases
-
- A-271680254
- CVE-2022-27405
- Published
- 2023-07-01T00:00:00Z
- Modified
- 2025-08-06T16:29:06.385449Z
- Summary
- [none]
- Details
-
In ftopenface_internal of ftobjs.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/external/freetype
Package
- Name
- platform/external/freetype
Ecosystem specific
{
"types": [
"ID"
],
"severity": "High",
"vanir_signatures": [
{
"digest": {
"function_hash": "273794191095029415571540735433697996590",
"length": 1445.0
},
"target": {
"function": "FT_Request_Size",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/b0f8930701bf19229075cc930ad15813ff5fb07b",
"id": "ASB-A-271680254-57aa9177"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"291292727991274572558975050199969150874",
"317036238205304435232424104055067117137",
"116755388619180383490645454328218328511",
"139585023601765551227564037762443631804",
"287252210620997460612647761413592587611",
"265778105458753372634855752333945513311"
]
},
"target": {
"file": "src/base/ftobjs.c"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/b0f8930701bf19229075cc930ad15813ff5fb07b",
"id": "ASB-A-271680254-5e513610"
},
{
"digest": {
"function_hash": "121312326407145946817341732961959920737",
"length": 4919.0
},
"target": {
"function": "ft_open_face_internal",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/b0f8930701bf19229075cc930ad15813ff5fb07b",
"id": "ASB-A-271680254-ffe6e6f0"
}
],
"fixes": [
"https://android.googlesource.com/platform/external/freetype/+/b0f8930701bf19229075cc930ad15813ff5fb07b"
],
"spl": "2023-07-01"
}platform/external/freetype
Package
- Name
- platform/external/freetype
Ecosystem specific
{
"types": [
"ID"
],
"severity": "High",
"vanir_signatures": [
{
"digest": {
"function_hash": "183948334972099493898034944722317380673",
"length": 1447.0
},
"target": {
"function": "FT_Request_Size",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/470a3e6a1eae76bb5109cec4b01d0ec1ea57dab7",
"id": "ASB-A-271680254-0de1263b"
},
{
"digest": {
"function_hash": "121312326407145946817341732961959920737",
"length": 4919.0
},
"target": {
"function": "ft_open_face_internal",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/470a3e6a1eae76bb5109cec4b01d0ec1ea57dab7",
"id": "ASB-A-271680254-21c8751a"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"291292727991274572558975050199969150874",
"317036238205304435232424104055067117137",
"116755388619180383490645454328218328511",
"139585023601765551227564037762443631804",
"287252210620997460612647761413592587611",
"265778105458753372634855752333945513311"
]
},
"target": {
"file": "src/base/ftobjs.c"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/470a3e6a1eae76bb5109cec4b01d0ec1ea57dab7",
"id": "ASB-A-271680254-d5686c46"
}
],
"fixes": [
"https://android.googlesource.com/platform/external/freetype/+/470a3e6a1eae76bb5109cec4b01d0ec1ea57dab7"
],
"spl": "2023-07-01"
}platform/external/freetype
Package
- Name
- platform/external/freetype
Ecosystem specific
{
"types": [
"ID"
],
"severity": "High",
"vanir_signatures": [
{
"digest": {
"function_hash": "183948334972099493898034944722317380673",
"length": 1447.0
},
"target": {
"function": "FT_Request_Size",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/fa4a08921a89b20389b2e61d8817858d4bca291c",
"id": "ASB-A-271680254-51f0a721"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"291292727991274572558975050199969150874",
"317036238205304435232424104055067117137",
"116755388619180383490645454328218328511",
"139585023601765551227564037762443631804",
"287252210620997460612647761413592587611",
"265778105458753372634855752333945513311"
]
},
"target": {
"file": "src/base/ftobjs.c"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/fa4a08921a89b20389b2e61d8817858d4bca291c",
"id": "ASB-A-271680254-b94e759f"
},
{
"digest": {
"function_hash": "121312326407145946817341732961959920737",
"length": 4919.0
},
"target": {
"function": "ft_open_face_internal",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/fa4a08921a89b20389b2e61d8817858d4bca291c",
"id": "ASB-A-271680254-fd5b8413"
}
],
"fixes": [
"https://android.googlesource.com/platform/external/freetype/+/fa4a08921a89b20389b2e61d8817858d4bca291c"
],
"spl": "2023-07-01"
}platform/external/freetype
Package
- Name
- platform/external/freetype
Ecosystem specific
{
"types": [
"ID"
],
"severity": "High",
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"291292727991274572558975050199969150874",
"317036238205304435232424104055067117137",
"116755388619180383490645454328218328511",
"139585023601765551227564037762443631804",
"287252210620997460612647761413592587611",
"265778105458753372634855752333945513311"
]
},
"target": {
"file": "src/base/ftobjs.c"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/8abb5b963d8f3bac3224c09edff6dcbbd11bf508",
"id": "ASB-A-271680254-55aa8618"
},
{
"digest": {
"function_hash": "71647723270484019079235322500524970367",
"length": 1470.0
},
"target": {
"function": "FT_Request_Size",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/8abb5b963d8f3bac3224c09edff6dcbbd11bf508",
"id": "ASB-A-271680254-55e37d7f"
},
{
"digest": {
"function_hash": "77387954643045489322937233492881789249",
"length": 4920.0
},
"target": {
"function": "ft_open_face_internal",
"file": "src/base/ftobjs.c"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/external/freetype/+/8abb5b963d8f3bac3224c09edff6dcbbd11bf508",
"id": "ASB-A-271680254-b6552661"
}
],
"fixes": [
"https://android.googlesource.com/platform/external/freetype/+/8abb5b963d8f3bac3224c09edff6dcbbd11bf508"
],
"spl": "2023-07-01"
}