Lucene search
K

6 matches found

OSV
OSV
added 2020/02/18 12:8 p.m.11 views

SUSE-SU-2020:0393-1 Security update for fontforge

This update for fontforge fixes the following issues: - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236...

8.8CVSS8.9AI score0.02478EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2020/01/22 12:0 a.m.52 views

openSUSE Security Update : fontforge (openSUSE-2020-89)

This update for fontforge fixes the following issues : - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236. This update was imported from the SUSE:SLE-15:Update update project. C Tenable...

8.8CVSS8AI score0.02478EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2020/01/17 12:0 a.m.51 views

SUSE SLED15 / SLES15 Security Update : fontforge (SUSE-SU-2020:0118-1)

This update for fontforge fixes the following issues : CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236. Note that Tenable Network Security has extracted the preceding description block...

8.8CVSS8AI score0.02478EPSS
Exploits2References7
OSV
OSV
added 2020/01/16 1:13 p.m.5 views

SUSE-SU-2020:0118-1 Security update for fontforge

This update for fontforge fixes the following issues: - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236...

8.8CVSS8.9AI score0.02478EPSS
Exploits2References5
OSV
OSV
added 2020/01/03 10:15 p.m.3 views

UBUNTU-CVE-2020-5496

FontForge 20190801 has a heap-based buffer overflow in the Type2NotDefSplines function in splinesave.c...

8.8CVSS7.5AI score0.02365EPSS
Exploits1References3
CVE
CVE
added 2020/01/03 12:0 a.m.254 views

CVE-2020-5496

FontForge 20190801 is affected by a heap-based buffer overflow in Type2NotDefSplines() (splinesave.c) linked to CVE-2020-5496. Connected advisories confirm the issue across multiple distros, e.g., openSUSE openSUSE-2020:89, Debian DLA-3754-1, SUSE-SU-2020:0118-1, Mageia MGASA-2020-0057, and Gento...

8.8CVSS8.7AI score0.02365EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder