34 matches found
SUSE CVE-2017-11568
FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines psread.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11576
FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...
CVE-2017-11575
FontForge 20161012 is vulnerable to a buffer over-read in strnmatch char.c resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c...
CVE-2017-11572
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts parsettf.c resulting in DoS or code execution via a crafted otf file...
FontForge buffer overflow vulnerability (CNVD-2017-18536)
FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in strnmatch in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially crafted otf fil...
FontForge buffer overflow vulnerability (CNVD-2017-18537)
FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in readcffset in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially crafted otf fi...
FontForge Buffer Overflow Vulnerability
FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in getsid in FontForge version 20161012. An attacker can exploit this vulnerability with a specially crafted otf file to cause a denial of service or code execution...
FontForge buffer overflow vulnerability (CNVD-2017-18542)
FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in readttfcopyrights in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially crafted...
FontForge buffer overflow vulnerability (CNVD-2017-18538)
FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in ValidatePostScriptFontName in FontForge version 20161012. An attacker can exploit this vulnerability with a specially crafted otf file to cause a denial of service or execute...
FontForge Denial of Service Vulnerability
FontForge is an open source font editing tool that supports multiple languages. A security vulnerability exists in the weight vector memcpy call to readcfftopdict in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service with the help of an otf file...
FontForge buffer overflow vulnerability (CNVD-2017-18365)
FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in PSCharStringToSplines in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially...
Buffer overflow
FontForge 20161012 is vulnerable to a buffer over-read in umodenc parsettf.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11575
FontForge 20161012 is vulnerable to a buffer over-read in strnmatch char.c resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c...
DEBIAN-CVE-2017-11575
FontForge 20161012 is vulnerable to a buffer over-read in strnmatch char.c resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c...
CVE-2017-11577
FontForge 20161012 is vulnerable to a buffer over-read in getsid parsettf.c resulting in DoS or code execution via a crafted otf file...
Stack overflow
FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble parsettf.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11572
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts parsettf.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11571
FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble parsettf.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11573
FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName parsettf.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11569
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights parsettf.c resulting in DoS or code execution via a crafted otf file...