CVE-2026-47318: Cpp Freetype Bezier Stack Overflow
A stack-based buffer overflow can occur when recursively splitting cubic Bezier curves without enforcing a depth limit. The pointer tracking the current curve on the stack is advanced blindly, leading to out-of-bounds writes on the fixed-size bezier stack. Ensure stack bounds are checked before splitting.
Provally CuratedPublic repositoryHighMedium confidenceVerifiedApache-2.0
C++β
C++βgreprules fetch cve-2026-47318-cpp-freetype-bezier-stack-overflow --engine opengrepDescription
A stack-based buffer overflow can occur when recursively splitting cubic Bezier curves without enforcing a depth limit. The pointer tracking the current curve on the stack is advanced blindly, leading to out-of-bounds writes on the fixed-size bezier stack. Ensure stack bounds are checked before splitting.
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0