Pricing Enterprise

CVE-2025-23022

4.0MEDIUM

FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.

Published: 1/10/2025Updated: 1/16/2025

View on NVD View on MITRE

Description

FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.

AI AnalysisPowered by AI

Affected Products

freetypefreetype

2.8.1

References

https://gitlab.freedesktop.org/freetype/freetype/-/issues/1312
Exploit
https://security-tracker.debian.org/tracker/CVE-2025-23022
Issue Tracking