SecuritySpace - CVE-2014-2241

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2014-2241

Description: The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType before 2.5.3 do not properly check if a subroutine exists, which allows remote attackers to cause a denial of service (assertion failure), as demonstrated by a crafted ttf file.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-2241
http://www.openwall.com/lists/oss-security/2014/03/12/4
http://secunia.com/advisories/57447
http://www.ubuntu.com/usn/USN-2148-1

CVE ID:	CVE-2014-2241
Description:	The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType before 2.5.3 do not properly check if a subroutine exists, which allows remote attackers to cause a denial of service (assertion failure), as demonstrated by a crafted ttf file.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2241 http://www.openwall.com/lists/oss-security/2014/03/12/4 http://secunia.com/advisories/57447 http://www.ubuntu.com/usn/USN-2148-1