CVE-2015-9290

In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again.

View Full Alert

Related Posts

  • CVE-2015-6960

    edx-platform before 2015-09-17 allows XSS via a team name. View Full Alert

  • CVE-2015-6253

    edx-platform before 2015-08-17 allows XSS in the Studio listing of courses. View Full Alert

  • CVE-2015-3907

    CodeIgniter Rest Server (aka codeigniter-restserver) 2.7.1 allows XXE attacks. View Full Alert