| |
ID ▼ |
Type ▼ |
Status ▼ |
Priority ▼ |
Milestone ▼ |
Owner ▼ |
Summary + Labels ▼ |
... |
|---|
|
|
368 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel win32k.sys TTF font processing: pool-based buffer overflow in the IUP[] program instruction
CCProjectZeroMembers
|
|
|
|
369 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL OTF font processing: pool-based buffer overflow with malformed GPOS table
CCProjectZeroMembers
|
|
|
|
370 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel win32k.sys TTF font processing: pool-based buffer overflow in win32k!scl_ApplyTranslation
CCProjectZeroMembers
|
|
|
|
382 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL out-of-bounds reads from the input CharString stream
CCProjectZeroMembers
|
|
|
|
383 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL invalid memory access due to malformed CFF table (ATMFD+0x34072 / ATMFD+0x3407b)
CCProjectZeroMembers
|
|
|
|
384 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL invalid memory access due to malformed CFF table (ATMFD+0x3440b / ATMFD+0x3440e)
CCProjectZeroMembers
|
|
|
|
385 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL write to uninitialized address due to malformed CFF table
CCProjectZeroMembers
|
|
|
|
386 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL out-of-bounds read due to malformed Name INDEX in the CFF table
CCProjectZeroMembers
|
|
|
|
387 |
----
|
Fixed
|
----
|
----
|
scvitti@google.com
|
Microsoft Office 2007 and 2010 use after free vulnerability
CCProjectZeroMembers
|
|
|
|
391 |
----
|
Fixed
|
----
|
----
|
cevans@google.com
|
Adobe Flash: Use-after-free in attachMovie
CCProjectZeroMembers
|
|
|
|
392 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel ATMFD.DLL out-of-bounds read due to malformed FDSelect offset in the CFF table
CCProjectZeroMembers
|
|
|
|
401 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel win32k.sys TTF font processing: out-of-bounds pool memory access in win32k!fsc_RemoveDups
CCProjectZeroMembers
|
|
|
|
402 |
----
|
Fixed
|
----
|
----
|
mjurczyk@google.com
|
Windows Kernel win32k.sys TTF font processing: out-of-bounds pool write in win32k!fsc_BLTHoriz
CCProjectZeroMembers
|
|
|
|
403 |
----
|
Fixed
|
----
|
----
|
cevans@google.com
|
Adobe Flash: use-after-free in swapDepths
CCProjectZeroMembers
|
|
|
|
404 |
----
|
Fixed
|
----
|
----
|
cevans@google.com
|
Flash: bad / wild write in XML when callback modifies XML tree unexpectedly during property delete
CCProjectZeroMembers
|
|