CVE-2015-3719

CVE-2015-3719 affects TrueTypeScaler in FontParser in Apple iOS < 8.4 and OS X

CVE-2015-3680

CVE-2015-3680 describes a vulnerability in Apple Type Services (ATS) on OS X prior to 10.10.4, where processing a crafted font file can lead to remote code execution or memory corruption causing a denial of service. The issue is part of a family of font-related flaws affecting ATS (distinct from ...

CVE-2015-3679

CVE-2015-3679 affects Apple Type Services (ATS) in OS X prior to 10.10.4, where processing a crafted font file could allow a remote attacker to trigger memory corruption and execute arbitrary code or cause a crash. The vulnerability is tied to ATS font handling and is listed among multiple CVEs r...

CVE-2015-3681

CVE-2015-3681 affects Apple Type Services (ATS) in OS X versions prior to 10.10.4. It allows remote code execution or memory corruption via a crafted font file. The issue is addressed in OS X Yosemite 10.10.4 / Security Update 2015-005, which lists ATS CVEs 2015-3679 through 2015-3682 as addresse...

Apple MAC OS X Font File Handling Processing Arbitrary Code Execution Vulnerability (CNVD-2015-04269)

Apple Mac OS X is a commercial operating system. An arbitrary code execution vulnerability exists in Apple Mac OS X's handling of specially crafted font files, which allows an attacker to construct a malicious file that can be parsed by a user to execute arbitrary code...

Apple iOS Font File Handling Memory Corruption Vulnerability (CNVD-2015-04311)

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A security vulnerability in the handling of font files in Apple iOS allows an attacker to construct a malicious font file and trick an application into parsing it, which can crash the application or execu...

Apple MAC OS X Font File Handling Processing Arbitrary Code Execution Vulnerability (CNVD-2015-04268)

Apple Mac OS X is a commercial operating system. An arbitrary code execution vulnerability exists in Apple Mac OS X's handling of specially crafted font files, which allows an attacker to construct a malicious file that can be parsed by a user to execute arbitrary code...

Apple MAC OS X Font File Handling Processing Arbitrary Code Execution Vulnerability (CNVD-2015-04267)

Apple Mac OS X is a commercial operating system. An arbitrary code execution vulnerability exists in Apple Mac OS X's handling of specially crafted font files, which allows an attacker to construct a malicious file that can be parsed by a user to execute arbitrary code...

Apple MAC OS X Font File Handling Processing Arbitrary Code Execution Vulnerability (CNVD-2015-04266)

Apple Mac OS X is a commercial operating system. An arbitrary code execution vulnerability exists in Apple Mac OS X's handling of specially crafted font files, which allows an attacker to construct a malicious file that can be parsed by a user to execute arbitrary code...

Debian DLA-256-1 : t1utils security update

Jakub Wilk found a vulnerability in the Type 1 font manipulation programs, t1utils : CVE-2015-3905 Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

CVE-2015-3905

Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

CVE-2015-3905

Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

Buffer overflow

Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

CVE-2015-3905

Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

CVE-2015-3905

The CVE-2015-3905 vulnerability affects t1utils (Type 1 font manipulation tools). A buffer overflow in set_cs_start (in t1disasm.c) before version 1.39 can allow a remote attacker to crash the process or possibly execute arbitrary code via a crafted font file. Affected releases include t1utils be...

CVE-2015-3905

Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

CVE-2015-3905

Buffer overflow in the setcsstart function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

Apple Releases Patches For a Watch

What happens when you build a watch that is essentially an absurdly powerful computer that also tells time? You have to patch that watch. And that’s what Apple has done for the first time, releasing a long list of fixes for security problems with the Apple Watch OS. At least one of the...

CVE-2015-1093

FontParser in Apple iOS before 8.3 and Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted font file...

Memory corruption

FontParser in Apple iOS before 8.3 and Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted font file...