24 matches found
EUVD-2020-5395
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-5395
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c. CVE-2020-5395 Note that Nessus relies on the presence of the package as reported by the...
CVE-2020-5395
creationtimestamp| type| source ---|---|--- 2024-03-19 13:46:49+00:00| seen| https://t.me/ctinow/211484...
SUSE CVE-2020-5395
FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c...
NewStart CGSL CORE 5.05 / MAIN 5.05 : fontforge Vulnerability (NS-SA-2021-0153)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has fontforge packages installed that are affected by a vulnerability: - FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c. CVE-2020-5395 Note that Nessus has not tested for this issue but has instead relie...
CentOS 8 : fontforge (CESA-2020:4844)
The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2020:4844 advisory. - fontforge: SFDGetFontMetaData insufficient CVE-2020-5395 backport CVE-2020-25690 Note that Nessus has not tested for this issue but has instead relied only on...
RHEL 8 : libexif (RHSA-2020:5395)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5395 advisory. The libexif packages provide a library for extracting extra information from image files. Security Fixes: libexif: out of bounds write due to an...
Updated fontforge packages fix a security vulnerability
SFDGetFontMetaData insufficient CVE-2020-5395 backport. CVE-2020-25690...
MGASA-2020-0405 Updated fontforge packages fix a security vulnerability
SFDGetFontMetaData insufficient CVE-2020-5395 backport. CVE-2020-25690...
Moderate: Red Hat Security Advisory: fontforge security update
An update for fontforge is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Moderate: fontforge security update
FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: SFDGetFontMetaData insufficient CVE-2020-5395 backport...
ALSA-2020:4844 Moderate: fontforge security update
FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: SFDGetFontMetaData insufficient CVE-2020-5395 backport...
Amazon Linux 2 : fontforge (ALAS-2020-1514)
The version of fontforge installed on the remote host is prior to 20120731b-13. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1514 advisory. An out-of-bounds write was discovered in fontforge while parsing SFD files containing very large LayerCount tokens. The flaw...
Scientific Linux Security Update : fontforge on SL7.x x86_64 (20201001)
Security Fixes : - fontforge: out-of-bounds write in SFDGetFontMetaData function in sfd.c CVE-2020-5395 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid141736; scriptversion"1.3";...
CentOS 7 : fontforge (RHSA-2020:3966)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3966 advisory. - FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c. CVE-2020-5395 Note that Nessus has not tested for this issue but has instead relied on...
RHEL 7 : fontforge (RHSA-2020:3966)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3966 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type...
Moderate: Red Hat Security Advisory: fontforge security update
An update for fontforge is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Fedora 31 : fontforge (2020-906ee5b38d)
another fix for rh1790042 - CVE-2020-5395:out-of-bounds write in sfd.c Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducin...
SUSE-SU-2020:0393-1 Security update for fontforge
This update for fontforge fixes the following issues: - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236...
openSUSE Security Update : fontforge (openSUSE-2020-89)
This update for fontforge fixes the following issues : - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236. This update was imported from the SUSE:SLE-15:Update update project. C Tenable...