Home

Description

An out-of-bounds read vulnerability exists in FreeType 2.14.3 and versions before commit 5a280ecde6f324de0d226261036e736e0cb49a71 in src/truetype/ttgxvar.c, in the TT_Get_Var_Design implementation used by FT_Get_Var_Design_Coordinates

PUBLISHED Reserved 2026-06-07 | Published 2026-07-07 | Updated 2026-07-08 | Assigner mitre

References

gitlab.freedesktop.org/freetype/freetype/-/work_items/1436 exploit

gitlab.freedesktop.org/freetype/freetype/-/issues/1436

gitlab.freedesktop.org/...cde6f324de0d226261036e736e0cb49a71

github.com/...ommit/5a280ecde6f324de0d226261036e736e0cb49a71

gist.github.com/junius-sec/6dd0fb25b643f89914083a38e5e57ace

cve.org (CVE-2026-50811)

nvd.nist.gov (CVE-2026-50811)

Download JSON