2 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-11573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName parsettf.c resulting in DoS or code execution via a crafted otf file...
CVE-2017-11573
FontForge 20161012 is affected by a buffer over-read in ValidatePostScriptFontName (parsettf.c), allowing DoS or code execution via a crafted OTF file. Multiple sources (NVD, Red Hat, SUSE, OSV references) confirm the issue (CVE-2017-11573). SUSE OSV notes a patch/update to 20170731 addressing th...