What is CVE-2015-9381?

CVE-2015-9381 is a high-severity software vulnerability (Out-of-bounds read) with a CVSS score of 8.8. FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c.

Is CVE-2015-9381 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 2%.

What products does CVE-2015-9381 affect?

Tracked products affected include FreeType. Check the version you run to see whether it is affected.

How do I fix CVE-2015-9381?

Apply the vendor fix promptly. An official patch or advisory is available. Upgrade affected products to a fixed version.

← All products

CVE-2015-9381

HIGH severity · CVSS 8.8 · Out-of-bounds read

8.8CVSS HIGH

Summary

FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges requiredNone

User interactionRequired

Confidentiality impactHigh

Integrity impactHigh

Availability impactHigh

Exploit probability (EPSS)2%

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products we track (1)

FreeType

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Official patch: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1parse.c?id=7962a15d64c876870ca0ae435ea2467d9be268d9 ↗

Additional information

NVD record
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/src/type1/t1parse.c?id=7962a15d64c876870ca0ae435ea2467d9be268d9Patch
https://access.redhat.com/errata/RHSA-2019:4254
https://lists.debian.org/debian-lts-announce/2019/09/msg00002.htmlAdvisory
https://usn.ubuntu.com/4126-2/
https://savannah.nongnu.org/bugs/?45955Advisory