CVE-2018-6942

An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.

References

Affected packages

Git / github.com/aseprite/freetype2

Affected ranges

Type: GIT
Repo: https://github.com/aseprite/freetype2
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

67a42aa8879697c2bd190d213f873f0e9712589f

Affected versions

Other

BETA-5

BETA-6

BETA-7

BETA-8

DATE-050920

PRE-2-0-1

PRE-2-0-6

RELEASE-2-0

VER-2-0

VER-2-0-1

VER-2-0-2

VER-2-0-2-TEST

VER-2-0-3

VER-2-0-4

VER-2-0-5

VER-2-0-6

VER-2-0-7

VER-2-0-8

VER-2-1-0

VER-2-1-1

VER-2-1-1-RC1

VER-2-1-10

VER-2-1-2

VER-2-1-2-RC1

VER-2-1-3

VER-2-1-3-RC1

VER-2-1-3-RC2

VER-2-1-3-RC3

VER-2-1-4

VER-2-1-4-RC1

VER-2-1-4-RC2

VER-2-1-5-RC1

VER-2-1-6

VER-2-1-7

VER-2-1-8

VER-2-1-8-RC1

VER-2-1-9

VER-2-2-0

VER-2-2-0-RC1

VER-2-2-0-RC2

VER-2-2-0-RC3

VER-2-2-0-RC4

VER-2-2-1

VER-2-3-0

VER-2-3-0-FINAL

VER-2-3-0-RC1

VER-2-3-0-RC2

VER-2-3-1

VER-2-3-1-FINAL

VER-2-3-10

VER-2-3-11

VER-2-3-12

VER-2-3-2

VER-2-3-3

VER-2-3-4

VER-2-3-5

VER-2-3-5-REAL

VER-2-3-6

VER-2-3-7

VER-2-3-8

VER-2-3-9

VER-2-4-0

VER-2-4-1

VER-2-4-10

VER-2-4-11

VER-2-4-12

VER-2-4-12-beta

VER-2-4-2

VER-2-4-3

VER-2-4-4

VER-2-4-5

VER-2-4-6

VER-2-4-7

VER-2-4-8

VER-2-4-9

VER-2-5-0

VER-2-5-0-1

VER-2-5-1

VER-2-5-2

VER-2-5-3

VER-2-5-4

VER-2-5-5

VER-2-6

VER-2-6-1

VER-2-6-2

VER-2-6-3

VER-2-6-4

VER-2-6-5

VER-2-7

VER-2-7-1

VER-2-8

VER-2-8-1

VER-2-9

VER-2-BETA2

VER-2-BETA3

VER-2-BETA4

freetype

freetype2

import

start

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-6942.json"