GHSA-v5fr-wv7c-jq2mMediumCVSS 6.5

An out-of-bounds read vulnerability exists in FreeType 2.14.3 and versions before commit...

Published
July 8, 2026
Last Modified
July 8, 2026

🔗 CVE IDs covered (1)

📋 Description

An out-of-bounds read vulnerability exists in FreeType 2.14.3 and versions before commit 5a280ecde6f324de0d226261036e736e0cb49a71 in src/truetype/ttgxvar.c, in the TT_Get_Var_Design implementation used by FT_Get_Var_Design_Coordinates

🔗 References (7)