6 matches found
SUSE-SU-2026:1636-1 Security update for fontforge
This update for fontforge fixes the following issue: - CVE-2025-15270: Remote code execution via malicious SFD file parsing bsc1256031...
CVE-2025-15275
FontForge SFD File Parsing Heap-based Buffer Overflow (CVE-2025-15275) affects FontForge and enables remote code execution. The flaw occurs in the SFD parser, where the length of user-supplied data is not properly validated before copying to a heap-based buffer, allowing an attacker to run arbitr...
SUSE CVE-2007-5745
Multiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Quattro Pro QPRO file with crafted 1 Attribute and 2 Font Description records...
SUSE CVE-2012-1141
FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid heap read operation and memory corruption or possibly execute arbitrary code via a crafted ASCII string in a BDF font...
Heap overflow
Multiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Quattro Pro QPRO file with crafted 1 Attribute and 2 Font Description records...
CVE-2007-5745
Multiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Quattro Pro QPRO file with crafted 1 Attribute and 2 Font Description records...