Lucene search
K

831 matches found

RedHat Linux
RedHat Linux
added 2026/04/20 10:3 a.m.6 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS7.9AI score0.0058EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/20 10:3 a.m.5 views

fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing

A flaw was found in FontForge. This heap-based buffer overflow vulnerability occurs during the parsing of pixels within BMP Bitmap files, due to insufficient validation of user-supplied data length. A remote attacker could exploit this by tricking a user into opening a malicious BMP file or...

7.8CVSS8AI score0.00259EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/20 2:12 a.m.6 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS7.4AI score0.00581EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/20 2:12 a.m.4 views

fontforge: FontForge: Remote Code Execution via malicious SFD file parsing

A flaw was found in FontForge. This vulnerability allows a remote attacker to execute arbitrary code by tricking a user into opening a specially crafted SFD Spline Font Database file. The issue stems from improper validation of array indexes during SFD file parsing, which can lead to writing data...

8.8CVSS8.1AI score0.00581EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.11 views

RHEL 7 : fontforge (RHSA-2026:8937)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:8937 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1,...

8.8CVSS8AI score0.0058EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.5 views

RHEL 10 : fontforge (RHSA-2026:8875)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:8875 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Typ...

8.8CVSS7.5AI score0.00581EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.6 views

AlmaLinux 8 : fontforge (ALSA-2026:7677)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:7677 advisory. fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing CVE-2025-15279 fontforge: FontForge: Remote Code Execution...

8.8CVSS6.7AI score0.00581EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2026/04/14 12:1 p.m.11 views

fontforge security update

An update is available for fontforge. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FontForge is a font editor for outline and bitmap fonts. It supports a rang...

8.8CVSS8AI score0.00581EPSS
Exploits0
OSV
OSV
added 2026/04/14 12:1 p.m.6 views

RLSA-2026:7677 Important: fontforge security update

FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: FontForge: Remote Code Execution via heap-based buffer...

8.8CVSS7.9AI score0.00581EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2026/04/14 12:0 a.m.10 views

fontforge security update

20200314-7 - Resolves: RHEL-138168 CVE-2025-15270 SFD File Parsing Remote Code Execution Vulnerability - Resolves: RHEL-138174 CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow - Resolves: RHEL-138190 CVE-2025-15275 SFD File Parsing Heap-based Buffer Overflow - Resolves: RHEL-1381...

8.8CVSS7.2AI score0.0187EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.8 views

RockyLinux 8 : fontforge (RLSA-2026:7677)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:7677 advisory. fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing CVE-2025-15279 fontforge: FontForge: Remote Code Execution...

8.8CVSS8.1AI score0.00581EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.7 views

Oracle Linux 8 : fontforge (ELSA-2026-7677)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-7677 advisory. - Resolves: RHEL-138168 CVE-2025-15270 SFD File Parsing Remote Code Execution Vulnerability - Resolves: RHEL-138174 CVE-2025-15279 GUtils BMP File...

8.8CVSS7.4AI score0.00581EPSS
Exploits0References5
OSV
OSV
added 2026/04/13 10:7 a.m.3 views

RHSA-2026:7677 Red Hat Security Advisory: fontforge security update

Bulletin has no description...

8.8CVSS7.1AI score0.00581EPSS
Exploits0References23
RedHat Linux
RedHat Linux
added 2026/04/13 2:27 a.m.2 views

fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing

A flaw was found in FontForge. This heap-based buffer overflow vulnerability occurs during the parsing of pixels within BMP Bitmap files, due to insufficient validation of user-supplied data length. A remote attacker could exploit this by tricking a user into opening a malicious BMP file or...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/13 2:27 a.m.4 views

fontforge: FontForge: Arbitrary code execution via SFD file parsing buffer overflow

A flaw was found in FontForge. A remote attacker could exploit a heap-based buffer overflow vulnerability during SFD file parsing. This issue arises from insufficient validation of user-supplied data length before copying it to a buffer. Successful exploitation requires user interaction, such as...

8.8CVSS6.6AI score0.0058EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/13 2:27 a.m.4 views

fontforge: FontForge: Remote Code Execution via malicious SFD file parsing

A flaw was found in FontForge. This vulnerability allows a remote attacker to execute arbitrary code by tricking a user into opening a specially crafted SFD Spline Font Database file. The issue stems from improper validation of array indexes during SFD file parsing, which can lead to writing data...

8.8CVSS6.4AI score0.00581EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/13 2:27 a.m.4 views

fontforge: FontForge: Remote Code Execution via Use-After-Free in SFD file parsing

A flaw was found in FontForge. This use-after-free vulnerability, occurring during the parsing of SFD Spline Font Database files, allows a remote attacker to execute arbitrary code. Successful exploitation requires user interaction, such as opening a specially crafted malicious file or visiting a...

8.8CVSS6AI score0.00474EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/13 2:27 a.m.7 views

Important: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS6.6AI score0.00581EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2026/04/13 12:0 a.m.12 views

Important: fontforge security update

FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: FontForge: Remote Code Execution via heap-based buffer...

8.8CVSS7.9AI score0.00581EPSS
Exploits0References10
OSV
OSV
added 2026/04/13 12:0 a.m.8 views

ALSA-2026:7677 Important: fontforge security update

FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: FontForge: Remote Code Execution via heap-based buffer...

8.8CVSS6.5AI score0.00581EPSS
Exploits0References10
Rows per page
Query Builder