CVE-2009-0946 · threatengine.sh

Home/CVE/Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors re

CVE

CVE-2009-0946

Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors re

Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c.

HIGH · CVSS 7.5 EPSS 0.16376

Schedule remediation

EPSS ≥ 0.10 - elevated exploitation probability
EPSS percentile: top 5% of all CVEs by exploitation likelihood
CVSS base score ≥ 7.0

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-190Integer Overflow or Wraparound

▤

Affected Products & Versions

11

freetype<= 2.3.9
debian linuxall versions
canonical ubuntu linuxall versions
opensuseall versions
suse linux enterprise serverall versions
apple safariall versions
apple iphone os>= 1.0.0 and <= 2.2.1
apple mac os x>= 10.6.0 and <= 10.6.4
Show all 11 affected productsapple mac os xall versions
apple mac os x server>= 10.6.0 and <= 10.6.4
apple mac os x serverall versions

▣

Scoring & Timeline

7.5

HIGH · CVSS v2 (legacy) · cve@mitre.org

View on NVD

This CVE predates CVSS v3; the legacy v2 score is shown so triage still has a severity to work with.

v2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Published to NVD17 Apr 2009 · 12:30 AM

⚑

Vendor Advisories

6

suse-csafopenSUSE-SU-2024:10172-1
suse-csafopenSUSE-SU-2024:10438-1
usnUSN-767-1
rhsaRHSA-2009:1062Important
rhsaRHSA-2009:1061Important
Show all 6 vendor advisoriesrhsaRHSA-2009:0329Important

🔗

References & Sources

39

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=0545ec1ca36b27cb928128870a83e5f668980bc5PatchThird Party Advisory

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=79972af4f0485a11dcb19551356c45245749fc5bPatchThird Party Advisory

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=a18788b14db60ae3673f932249cd02d33a227c4ePatchThird Party Advisory

http://git.savannah.gnu.org/cgit/freetype/freetype2.git/tree/ChangeLogRelease NotesThird Party Advisory

http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.htmlMailing ListThird Party Advisory

http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlMailing ListThird Party Advisory

Show all 39 references

http://lists.apple.com/archives/security-announce/2009/jun/msg00002.htmlBroken Link

http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlMailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.htmlMailing ListThird Party Advisory

http://secunia.com/advisories/34723Third Party Advisory

http://secunia.com/advisories/34913Third Party Advisory

http://secunia.com/advisories/34967Third Party Advisory

http://secunia.com/advisories/35065Third Party Advisory

http://secunia.com/advisories/35074Third Party Advisory

http://secunia.com/advisories/35198Third Party Advisory

http://secunia.com/advisories/35200Third Party Advisory

http://secunia.com/advisories/35204Third Party Advisory

http://secunia.com/advisories/35210Third Party Advisory

http://secunia.com/advisories/35379Third Party Advisory

http://security.gentoo.org/glsa/glsa-200905-05.xmlThird Party Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-66-270268-1Broken Link

http://support.apple.com/kb/HT3549Third Party Advisory

http://support.apple.com/kb/HT3613Third Party Advisory

http://support.apple.com/kb/HT3639Third Party Advisory

http://support.apple.com/kb/HT4435Broken Link

http://www.debian.org/security/2009/dsa-1784Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2009:243Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2009-0329.htmlThird Party Advisory

http://www.redhat.com/support/errata/RHSA-2009-1061.htmlThird Party Advisory

http://www.redhat.com/support/errata/RHSA-2009-1062.htmlThird Party Advisory

http://www.securityfocus.com/bid/34550Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-767-1Third Party Advisory

http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlThird Party AdvisoryUS Government Resource

http://www.vupen.com/english/advisories/2009/1058Third Party Advisory

http://www.vupen.com/english/advisories/2009/1297Third Party Advisory

http://www.vupen.com/english/advisories/2009/1522Third Party Advisory

http://www.vupen.com/english/advisories/2009/1621Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=491384Issue TrackingPatchThird Party Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10149Third Party Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin