Vulnerability CVE-2026-23865: Information

Description

An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.

Severity: MEDIUM (5.3)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
URL: https://nvd.nist.gov/vuln/detail/CVE-2026-23865
Published: March 2, 2026
Modified: May 1, 2026
Error type identifier: CWE-125

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
java-1.8.0-openjdksisyphus1.8.0.492.b09-alt11.8.0.492.b09-alt2ALT-PU-2026-7045-2416783Fixed
java-1.8.0-openjdkp111.8.0.492.b09-alt21.8.0.482.b08-alt1ALT-PU-2026-7063-1416913Testing
java-1.8.0-openjdkc10f21.8.0.492.b09-alt21.8.0.482.b08-alt1ALT-PU-2026-7065-1416908Testing
java-11-openjdksisyphus11.0.31.0.11-alt111.0.31.0.11-alt1ALT-PU-2026-7023-2416780Fixed
java-11-openjdkp1111.0.31.0.11-alt111.0.30.0.7-alt1ALT-PU-2026-7029-1416891Testing
java-11-openjdkc10f211.0.31.0.11-alt0.c10.111.0.30.0.7-alt0.c10.1ALT-PU-2026-7031-1416892Testing
java-17-openjdksisyphus17.0.19.0.10-alt117.0.19.0.10-alt1ALT-PU-2026-7037-2416778Fixed
java-17-openjdkp1117.0.19.0.10-alt117.0.18.0.8-alt2ALT-PU-2026-7041-1416901Testing
java-17-openjdkc10f217.0.19.0.10-alt117.0.19.0.10-alt1ALT-PU-2026-7043-2416903Fixed
java-21-openjdksisyphus21.0.11.0.10-alt121.0.11.0.10-alt1ALT-PU-2026-7033-2416776Fixed
java-21-openjdkp1121.0.11.0.10-alt121.0.11.0.10-alt1ALT-PU-2026-7035-2416897Fixed
java-21-openjdkp1021.0.11.0.10-alt0.p10.121.0.11.0.10-alt0.p10.1ALT-PU-2026-7125-2416899Fixed
java-21-openjdkc10f221.0.11.0.10-alt0.p10.121.0.11.0.10-alt0.p10.1ALT-PU-2026-7039-2416898Fixed
java-25-openjdksisyphus25.0.3.0.9-alt125.0.3.0.9-alt1ALT-PU-2026-6972-2416777Fixed
java-25-openjdkp1125.0.3.0.9-alt125.0.3.0.9-alt1ALT-PU-2026-6980-2416806Fixed
libfreetypesisyphus2.14.2-alt12.14.3-alt1ALT-PU-2026-7077-1410097Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://gitlab.com/freetype/freetype/-/commit/fc85a255849229c024c8e65f536fe1875d84841c
  • Patch
https://sourceforge.net/projects/freetype/files/freetype2/2.14.2/
  • Release Notes
https://www.facebook.com/security/advisories/cve-2026-23865
  • Third Party Advisory
http://www.openwall.com/lists/oss-security/2026/03/03/8
  • Mailing List
    1. cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*
      Start including
      2.13.2
      End including
      2.13.3
      cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*
      Start including
      2.14.0
      End including
      2.14.1
VKontakte|Telegram|YouTube|Forum|ALT Linux Space|Bugzilla
Version: v26.2.2
Back to top