CVE-2011-3439

Public on 2011-11-11

Modified on 2014-09-14

Description

FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font in a document.

Severity

Important

See what this means

CVSS v3 Base Score

6.8

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory
Amazon Linux 1	freetype	2011-11-19 01:18	ALAS-2011-20

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv2	6.8	AV:N/AC:M/Au:N/C:P/I:P/A:P
NVD	CVSSv2	9.3	AV:N/AC:M/Au:N/C:C/I:C/A:C

References

Red Hat: CVE-2011-3439 Mitre: CVE-2011-3439 FAQs regarding Amazon Linux ALAS/CVE Severity