An out-of-bounds read vulnerability exists in FreeType 2.14.3 and versions before commit 5a280ecde6f324de0d226261036e736e0cb49a71 in src/truetype/ttgxvar.c, in the TTGetVarDesign implementation used by FTGetVarDesign_Coordinates
{ "binaries": [ { "binary_name": "freetype2-demos", "binary_version": "2.13.3+dfsg-1ubuntu0.1" }, { "binary_name": "libfreetype6", "binary_version": "2.13.3+dfsg-1ubuntu0.1" } ] }
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-50811.json"
{ "binaries": [ { "binary_name": "freetype2-demos", "binary_version": "2.14.2+dfsg-1" }, { "binary_name": "libfreetype6", "binary_version": "2.14.2+dfsg-1" } ] }