Vulnerability Name:

CVE-2016-10328 (CCN-126666)

Assigned:2016-12-16
Published:2016-12-16
Updated:2021-03-26
Summary:FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.
CVSS v3 Severity:9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
6.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-787
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2016-10328

Source: CCN
Type: FreeType 2 GIT Repository
[cff] Fix heap buffer overflow (#49858).

Source: MISC
Type: Patch, Third Party Advisory
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=beecf80a6deecbaf5d264d4f864451bde4fe98b8

Source: MISC
Type: Third Party Advisory
http://savannah.nongnu.org/bugs/?func=detailitem&item_id=49858

Source: CCN
Type: IBM Security Bulletin 0718665 (PureFlex System & Flex System)
IBM Flex System Chassis Management Module (CMM) is affected by a vulnerabilty in Freetype 2 (CVE-2016-10328)

Source: CCN
Type: IBM Security Bulletin 0719055 (System x Blades)
IBM BladeCenter Advanced Management Module (AMM) is affected by a vulnerability in freetype2 (CVE-2016-10328)

Source: BID
Type: Third Party Advisory, VDB Entry
97677

Source: CCN
Type: BID-97677
FreeType 2 CVE-2016-10328 Out of Bounds Write Heap Buffer Overflow Vulnerability

Source: MISC
Type: Third Party Advisory, VDB Entry
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=289

Source: XF
Type: UNKNOWN
freetype-cve201610328-bo(126666)

Source: GENTOO
Type: Third Party Advisory
GLSA-201706-14

Source: CCN
Type: IBM Security Bulletin 6235162 (Rational DOORS Next Generation)
Multiple vulnerabilities affects IBM Engineering Requirements Management DOORS Next

Source: CCN
Type: Oracle CPUApr2020
Oracle Critical Patch Update Advisory - April 2020

Source: N/A
Type: Third Party Advisory
N/A

Vulnerable Configuration:Configuration 1:
  • cpe:/a:freetype:freetype:*:*:*:*:*:*:*:* (Version <= 2.7)

  • Configuration 2:
  • cpe:/a:oracle:outside_in_technology:8.5.4:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:ibm:rational_doors_next_generation:6.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_doors_next_generation:6.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:outside_in_technology:8.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_doors_next_generation:6.0.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:outside_in_technology:8.5.5:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:201610328
    V
    CVE-2016-10328
    2022-09-02
    oval:org.opensuse.security:def:32286
    P
    Security update for MozillaFirefox (Important) (in QA)
    2022-01-14
    oval:org.opensuse.security:def:30172
    P
    Security update for apache2 (Important)
    2022-01-12
    oval:org.opensuse.security:def:33792
    P
    Security update for net-snmp (Important)
    2022-01-05
    oval:org.opensuse.security:def:33115
    P
    Security update for libsndfile (Important)
    2022-01-05
    oval:org.opensuse.security:def:35282
    P
    Security update for gegl (Important)
    2021-12-28
    oval:org.opensuse.security:def:33753
    P
    Security update for MozillaFirefox (Important)
    2021-12-12
    oval:org.opensuse.security:def:33048
    P
    Security update for java-1_8_0-openjdk (Important)
    2021-11-23
    oval:org.opensuse.security:def:29442
    P
    Security update for binutils (Moderate)
    2021-11-09
    oval:org.opensuse.security:def:29431
    P
    Security update for webkit2gtk3 (Important)
    2021-10-06
    oval:org.opensuse.security:def:29430
    P
    Security update for glibc (Moderate)
    2021-10-06
    oval:org.opensuse.security:def:30133
    P
    Security update for glibc (Moderate)
    2021-10-06
    oval:org.opensuse.security:def:33009
    P
    Security update for MozillaFirefox (Important)
    2021-09-22
    oval:org.opensuse.security:def:34523
    P
    Security update for apache2-mod_auth_mellon (Moderate)
    2021-09-02
    oval:org.opensuse.security:def:30235
    P
    Security update for cpio (Important)
    2021-08-23
    oval:org.opensuse.security:def:31233
    P
    Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-07-27
    oval:org.opensuse.security:def:33670
    P
    Security update for qemu (Important)
    2021-06-10
    oval:org.opensuse.security:def:30084
    P
    Security update for gstreamer-plugins-bad (Important)
    2021-06-07
    oval:org.opensuse.security:def:31189
    P
    Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:34439
    P
    Security update for hivex (Moderate)
    2021-05-26
    oval:org.opensuse.security:def:34428
    P
    Security update for the Linux Kernel (Important)
    2021-05-12
    oval:org.opensuse.security:def:34427
    P
    Security update for libxml2 (Moderate)
    2021-05-05
    oval:org.opensuse.security:def:31168
    P
    Security update for cups (Important)
    2021-04-30
    oval:org.opensuse.security:def:30191
    P
    Security update for cups (Important)
    2021-04-30
    oval:org.opensuse.security:def:32903
    P
    Security update for apache-commons-io (Moderate)
    2021-04-26
    oval:org.opensuse.security:def:32285
    P
    Security update for MozillaFirefox (Important)
    2021-03-31
    oval:org.opensuse.security:def:34659
    P
    Security update for python36 (Moderate)
    2021-03-19
    oval:org.opensuse.security:def:30029
    P
    Security update for java-1_8_0-openjdk (Moderate)
    2021-02-19
    oval:org.opensuse.security:def:33766
    P
    Security update for screen (Important)
    2021-02-17
    oval:org.opensuse.security:def:33071
    P
    Security update for python (Important)
    2021-02-11
    oval:org.opensuse.security:def:32960
    P
    Security update for openssh (Moderate)
    2021-01-05
    oval:org.opensuse.security:def:28917
    P
    Security update for dovecot22 (Important)
    2021-01-04
    oval:org.opensuse.security:def:33912
    P
    Security update for flac (Moderate)
    2021-01-04
    oval:org.opensuse.security:def:28863
    P
    Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:35961
    P
    libopensc2-0.11.6-5.27.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35920
    P
    ipsec-tools-0.7.3-1.1.93 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:31080
    P
    Security update for python-setuptools (Important)
    2020-12-02
    oval:org.opensuse.security:def:34815
    P
    Security update for apport (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34758
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:31129
    P
    Security update for kvm (Important)
    2020-12-01
    oval:org.opensuse.security:def:28076
    P
    Security update for freetype2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28041
    P
    Security update for cups (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31024
    P
    Security update for java-1_7_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:27403
    P
    freetype2-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30869
    P
    Security update for evolution-data-server
    2020-12-01
    oval:org.opensuse.security:def:27359
    P
    Mesa-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30782
    P
    Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:27345
    P
    libldap-openssl1-2_4-2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30725
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:27306
    P
    tar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30635
    P
    Security update for xen (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27257
    P
    pam_krb5 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30503
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:27204
    P
    libopenssl0_9_8 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30429
    P
    Security update for xorg-x11-libxcb
    2020-12-01
    oval:org.opensuse.security:def:27053
    P
    wget on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30418
    P
    Security update for xorg-x11-libXfixes (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26969
    P
    librsvg on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29740
    P
    Security update for freetype2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30417
    P
    Security update for xorg-x11-libXfixes
    2020-12-01
    oval:org.opensuse.security:def:26912
    P
    gtk2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29704
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:26831
    P
    tar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29066
    P
    Security update for clamav (Important)
    2020-12-01
    oval:org.opensuse.security:def:26703
    P
    fvwm2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32747
    P
    man on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29022
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26639
    P
    star on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32660
    P
    fetchmail on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29005
    P
    Security update for ctdb (Important)
    2020-12-01
    oval:org.opensuse.security:def:34962
    P
    Security update for freetype2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26628
    P
    perl-HTML-Parser on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32603
    P
    squid on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28966
    P
    Security update for openssh (Critical)
    2020-12-01
    oval:org.opensuse.security:def:34922
    P
    Security update for evolution-data-server (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26627
    P
    perl-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32509
    P
    fetchmail on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34284
    P
    Security update for Python
    2020-12-01
    oval:org.opensuse.security:def:32374
    P
    Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34240
    P
    Security update for poppler (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32297
    P
    Security update for procps (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28711
    P
    Security update for icu
    2020-12-01
    oval:org.opensuse.security:def:34215
    P
    Security update for php5 (Important)
    2020-12-01
    oval:org.opensuse.security:def:28627
    P
    Security update for MozillaFirefox (Critical)
    2020-12-01
    oval:org.opensuse.security:def:34176
    P
    Security update for openssl1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:30910
    P
    Security update for freetype2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28570
    P
    Security update for Samba
    2020-12-01
    oval:org.opensuse.security:def:34127
    P
    Security update for mozilla-nspr, mozilla-nss
    2020-12-01
    oval:org.opensuse.security:def:30873
    P
    Security update for expat (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28485
    P
    Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34069
    P
    Security update for libxml2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28354
    P
    Security update for pidgin (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28287
    P
    Security update for mysql (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33823
    P
    Security update for glibc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28276
    P
    Security update for mysql (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28275
    P
    Security update for mxml (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33534
    P
    Security update for ConsoleKit
    2020-12-01
    oval:org.opensuse.security:def:35238
    P
    Security update for libpng12-0 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33452
    P
    Security update for GnuTLS
    2020-12-01
    oval:org.opensuse.security:def:29876
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:35211
    P
    Security update for libgcrypt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33441
    P
    Security update for evolution-data-server
    2020-12-01
    oval:org.opensuse.security:def:29790
    P
    Security update for gtk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:35172
    P
    Security update for krb5
    2020-12-01
    oval:org.opensuse.security:def:31909
    P
    Security update for freetype2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33440
    P
    Security update for Evolution
    2020-12-01
    oval:org.opensuse.security:def:29733
    P
    Security update for foomatic-filters
    2020-12-01
    oval:org.opensuse.security:def:35123
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31871
    P
    Security update for curl (Important)
    2020-12-01
    oval:org.opensuse.security:def:29646
    P
    Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:35064
    P
    Security update for java-1_7_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:29514
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34905
    P
    Security update for djvulibre (Low)
    2020-12-01
    oval:com.ubuntu.precise:def:201610328000
    V
    CVE-2016-10328 on Ubuntu 12.04 LTS (precise) - medium.
    2017-04-14
    oval:com.ubuntu.xenial:def:2016103280000000
    V
    CVE-2016-10328 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-04-14
    oval:com.ubuntu.trusty:def:201610328000
    V
    CVE-2016-10328 on Ubuntu 14.04 LTS (trusty) - medium.
    2017-04-14
    oval:com.ubuntu.xenial:def:201610328000
    V
    CVE-2016-10328 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-04-14
    BACK
    freetype freetype *
    oracle outside in technology 8.5.4
    ibm rational doors next generation 6.0.2
    ibm rational doors next generation 6.0.6
    oracle outside in technology 8.5.4
    ibm rational doors next generation 6.0.6.1
    oracle outside in technology 8.5.5