27 matches found
[SECURITY] Fedora 43 Update: fontforge-20230101-20.fc43
FontForge former PfaEdit is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts...
[SECURITY] Fedora 42 Update: fontforge-20230101-19.fc42
FontForge former PfaEdit is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts...
[SECURITY] Fedora 42 Update: fontforge-20230101-17.fc42
FontForge former PfaEdit is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts...
[SECURITY] Fedora 40 Update: fontforge-20230101-11.fc40
FontForge former PfaEdit is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts...
Moderate: fontforge security update
FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: SFDGetFontMetaData insufficient CVE-2020-5395 backport...
Moderate: Red Hat Security Advisory: fontforge security update
An update for fontforge is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
[SECURITY] Fedora 31 Update: fontforge-20190801-2.fc31
FontForge former PfaEdit is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts...
Amazon Linux AMI : freetype (ALAS-2011-20)
Multiple input validation flaws were found in the way FreeType processed CID-keyed fonts. If a specially crafted font file was loaded by an application linked against FreeType, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running...
RHEL 5 : freetype (RHSA-2012:0094)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0094 advisory. - freetype: FTBitmapNew integer overflow, FreeType TTVaryGetGlyphDeltas improper input validation CVE-2011-3256 - freetype: Multiple securit...
Scientific Linux Security Update : freetype on SL4.x, SL5.x, SL6.x i386/x86_64
FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual glyphs efficiently. The freetype packages for Scientific Linux 4 provide both the FreeType 1 and FreeType 2 font engines. The freetype packages for Scientific...
CentOS Update for freetype CESA-2011:1455 centos4 x86_64
Check for the Version of freetype OpenVAS Vulnerability Test CentOS Update for freetype CESA-2011:1455 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...
CentOS Update for freetype CESA-2011:1455 centos5 x86_64
Check for the Version of freetype OpenVAS Vulnerability Test CentOS Update for freetype CESA-2011:1455 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...
Debian: Security Advisory (DSA-2350-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 2350-1 (freetype)
The remote host is missing an update to freetype announced via advisory DSA 2350-1. OpenVAS Vulnerability Test $Id: deb23501.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2350-1 freetype Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
freetype: Multiple security flaws when loading CID-keyed Type 1 fonts
FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted font in a document...
CentOS Update for freetype CESA-2011:1455 centos4 i386
Check for the Version of freetype OpenVAS Vulnerability Test CentOS Update for freetype CESA-2011:1455 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
[SECURITY] [DSA 2350-1] freetype security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2350-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 20, 2011 http://www.debian.org/security/faq -...
DSA-2350-1 freetype - missing input sanitising
Bulletin has no description...
Important: freetype
Issue Overview: Multiple input validation flaws were found in the way FreeType processed CID-keyed fonts. If a specially-crafted font file was loaded by an application linked against FreeType, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of t...
USN-1267-1: FreeType vulnerabilities
It was discovered that FreeType did not correctly handle certain malformed Type 1 font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash or possibly execute arbitrary code with user privileges. CVE-2011-3256 It was discovered...