Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-4259HistoryDec 07, 2010 - 1:53 p.m.
CVE-2010-4259
2010-12-0713:53:00
Debian Security Bug Tracker
security-tracker.debian.org
2
0.166 Low
EPSS
Percentile
96.0%
Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long CHARSET_REGISTRY header in a BDF font file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | fontforge | < 0.0.20100501-4 | fontforge_0.0.20100501-4_all.deb |
| Debian | 11 | all | fontforge | < 0.0.20100501-4 | fontforge_0.0.20100501-4_all.deb |
| Debian | 10 | all | fontforge | < 0.0.20100501-4 | fontforge_0.0.20100501-4_all.deb |
| Debian | 999 | all | fontforge | < 0.0.20100501-4 | fontforge_0.0.20100501-4_all.deb |
| Debian | 13 | all | fontforge | < 0.0.20100501-4 | fontforge_0.0.20100501-4_all.deb |
Related
fedora
fedora
[SECURITY] Fedora 14 Update: fontforge-20100501-5.fc14
2010-12-13 20:08:47
[SECURITY] Fedora 13 Update: fontforge-20090923-4.fc13
2010-12-13 20:10:01
openvas
openvas
Fedora Update for fontforge FEDORA-2010-18577
2010-12-28 00:00:00
Debian: Security Advisory (DSA-2253-1)
2011-08-03 00:00:00
Gentoo Security Advisory GLSA 201201-08 (FontForge)
2012-02-12 00:00:00
securityvulns
securityvulns
FontForge buffer overflow
2011-06-08 00:00:00
[SECURITY] [DSA 2253-1] fontforge security update
2011-06-08 00:00:00
prion
prion
Stack overflow
2010-12-07 13:53:00
nessus
nessus
Debian DSA-2253-1 : fontforge - buffer overflow
2011-06-10 00:00:00
Fedora 13 : fontforge-20090923-4.fc13 (2010-18577)
2010-12-14 00:00:00
GLSA-201201-08 : FontForge: User-assisted execution of arbitrary code
2012-01-24 00:00:00
debian
debian
[SECURITY] [DSA 2253-1] fontforge security update
2011-06-03 19:42:53
cve
cve
CVE-2010-4259
2010-12-07 13:53:00
ubuntucve
ubuntucve
CVE-2010-4259
2010-12-07 00:00:00
cvelist
cvelist
CVE-2010-4259
2010-12-07 01:00:00
gentoo
gentoo
FontForge: User-assisted execution of arbitrary code
2012-01-23 00:00:00