Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.5 views

AlmaLinux 8 : fontforge (ALSA-2026:7677)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:7677 advisory. fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing CVE-2025-15279 fontforge: FontForge: Remote Code Execution...

8.8CVSS6.7AI score0.00581EPSS
Exploits0References6
OSV
OSV
added 2026/04/14 12:1 p.m.5 views

RLSA-2026:7677 Important: fontforge security update

FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: FontForge: Remote Code Execution via heap-based buffer...

8.8CVSS7.9AI score0.00581EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.7 views

Oracle Linux 8 : fontforge (ELSA-2026-7677)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-7677 advisory. - Resolves: RHEL-138168 CVE-2025-15270 SFD File Parsing Remote Code Execution Vulnerability - Resolves: RHEL-138174 CVE-2025-15279 GUtils BMP File...

8.8CVSS7.4AI score0.00581EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2026/04/14 12:0 a.m.10 views

fontforge security update

20200314-7 - Resolves: RHEL-138168 CVE-2025-15270 SFD File Parsing Remote Code Execution Vulnerability - Resolves: RHEL-138174 CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow - Resolves: RHEL-138190 CVE-2025-15275 SFD File Parsing Heap-based Buffer Overflow - Resolves: RHEL-1381...

8.8CVSS7.2AI score0.0187EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2026/04/13 2:27 a.m.6 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS6.6AI score0.00581EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/13 12:0 a.m.3 views

RHEL 8 : fontforge (RHSA-2026:7677)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:7677 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1,...

8.8CVSS6.7AI score0.00581EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/02/11 5:28 p.m.9 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

8.8CVSS7.4AI score0.0187EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2026/02/09 1:37 a.m.8 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

8.8CVSS7.9AI score0.0058EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/02/09 1:35 a.m.5 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS7.9AI score0.0058EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.5 views

RHEL 9 : fontforge (RHSA-2026:2213)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:2213 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1,...

8.8CVSS6.8AI score0.0058EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.5 views

Oracle Linux 10 : fontforge (ELSA-2026-2230)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-2230 advisory. - Resolves: RHEL-138159 CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow - Resolves: RHEL-138144 CVE-2025-15275 SFD File Parsing...

8.8CVSS5.7AI score0.0058EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/07 12:0 a.m.4 views

RockyLinux 9 : fontforge (RLSA-2026:2039)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:2039 advisory. fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing CVE-2025-15279 fontforge: FontForge: Remote Code Execution...

8.8CVSS8.6AI score0.0058EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2026/02/02 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2026-9b8156c2a9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.0058EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.5 views

Fedora 43 : fontforge (2026-746c4a59e2)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-746c4a59e2 advisory. Resolves: CVE-2025-15279, CVE-2025-15275, CVE-2025-15269 Tenable has extracted the preceding description block directly from the Fedora security...

8.8CVSS7.3AI score0.0058EPSS
Exploits0References4
CVE
CVE
added 2025/12/31 6:59 a.m.22 views

CVE-2025-15275

FontForge SFD File Parsing Heap-based Buffer Overflow (CVE-2025-15275) affects FontForge and enables remote code execution. The flaw occurs in the SFD parser, where the length of user-supplied data is not properly validated before copying to a heap-based buffer, allowing an attacker to run arbitr...

8.8CVSS7.2AI score0.0058EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-15275

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code ...

8.8CVSS7.7AI score0.0058EPSS
Exploits0References3
Rows per page
Query Builder