Retour à la veille
CVE-2026-50811
Description détaillée
An out-of-bounds read vulnerability exists in FreeType 2.14.3 and versions before commit 5a280ecde6f324de0d226261036e736e0cb49a71 in src/truetype/ttgxvar.c, in the TT_Get_Var_Design implementation used by FT_Get_Var_Design_Coordinates
Références et Patchs
https://gist.github.com/junius-sec/6dd0fb25b643f89914083a38e5e57acehttps://github.com/freetype/freetype/commit/5a280ecde6f324de0d226261036e736e0cb49a71https://gitlab.freedesktop.org/freetype/freetype/-/commit/5a280ecde6f324de0d226261036e736e0cb49a71https://gitlab.freedesktop.org/freetype/freetype/-/issues/1436
Dernières Vulnérabilités
CVE-2026-60002
ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. (This outcome occurs only on the client side.)
VOIR DÉTAILS
CVE-2026-60001
sshd in OpenSSH before 10.4 does not always honor the minimum authentication delay.
VOIR DÉTAILS
CVE-2026-60000
sshd in OpenSSH before 10.4 allows remote attackers to cause a denial of service (resource consumption from excessive authentication attempts) because MaxAuthTries was mishandled for GSSAPIAuthentication.
VOIR DÉTAILS
