Primary

Context

FreeType Library Integer Overflow Vulnerability in OpenType Variable Fonts Allowing Out-of-Bounds Read

Vulnerability

Patched

A vulnerability has been identified in the FreeType library, specifically in versions 2.13.2 and 2.13.3. The issue arises from an integer overflow in the 'tt_var_load_item_variation_store' function, which may lead to an out-of-bounds read when parsing HVAR, VVAR, and MVAR tables in OpenType variable fonts. This vulnerability has been addressed in FreeType version 2.14.2.

Impact

Exploitation of this vulnerability could result in out-of-bounds read operations, potentially leading to memory corruption or information disclosure.

Remediation

Users can upgrade to FreeType version 2.14.2 to address this vulnerability. Instructions for downloading FreeType 2.14.2 are available on the FreeType project page on SourceForge.

Added: Mar 2, 2026, 5:27 PM

Updated: Mar 2, 2026, 9:19 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

5.1

remediation

7.7

relevance

3.4

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

5.1

remediation

7.7

relevance

3.4

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FreeType Library Integer Overflow Vulnerability in OpenType Variable Fonts Allowing Out-of-Bounds Read

Vulnerability

Impact

Remediation

Affected Products

Freetype

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating