Lucene search
K

27 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Qt4-X11, qtsvg-opensource-src

In Qt versions prior to 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, the initialization of munitsPerEm in QtSvg QSvgFont is handled incorrectly...

6.5CVSS6.3AI score0.00877EPSS
Exploits0References2
OSV
OSV
added 2025/12/05 1:12 p.m.4 views

OESA-2025-2791 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

6.1CVSS6.7AI score0.00142EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2024-32701

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.0018EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-3587

Malicious code in bioql PyPI...

7.3CVSS6.2AI score0.0055EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/08/22 12:0 a.m.4 views

CVE-2022-45133

Mahara 21.10 before 21.10.6, 22.04 before 22.04.4, and 22.10 before 22.10.1 allows unsafe font upload for skins. A particularly structured XML file could allow one to traverse the server to obtain access to secure files or cause code execution based on the payload...

6.9AI score0.00315EPSS
Exploits0References2
OSV
OSV
added 2025/08/04 5:15 p.m.6 views

UBUNTU-CVE-2025-50422

Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled-face == NULL" assertion failure for cairoftunscaledfontfini in cairo-ft-font.c...

5.5CVSS6.6AI score0.00213EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/05 12:0 a.m.69 views

RHEL 7 : freetype (RHSA-2025:3395)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:3395 advisory. FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs...

8.1CVSS7.3AI score0.26049EPSS
Exploits1References4
OSV
OSV
added 2024/12/27 6:30 a.m.10 views

GHSA-GRHH-R4JJ-8JH7 tecnickcom/tc-lib-pdf-font mishandles fonts

An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...

7.3CVSS7.1AI score0.0055EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/04/04 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a security issue with fbcondosetfont in fbcon...

5.5CVSS6.4AI score0.00329EPSS
Exploits0References8
OSV
OSV
added 2023/09/02 11:5 a.m.4 views

OESA-2023-1580 qt security update

Qt pronounced as "cute", not "cu-tee" is a cross-platform framework that is usually used as a graphical toolkit, although it is also very helpful in creating CLI applications. It runs on the three major desktop OSes, as well as on mobile OSes, such as Symbian, Nokia Belle, Meego Harmattan, MeeGo ...

6.5CVSS6.8AI score0.00877EPSS
Exploits0References2
OSV
OSV
added 2023/09/02 11:5 a.m.3 views

OESA-2023-1579 qt security update

Qt pronounced as "cute", not "cu-tee" is a cross-platform framework that is usually used as a graphical toolkit, although it is also very helpful in creating CLI applications. It runs on the three major desktop OSes, as well as on mobile OSes, such as Symbian, Nokia Belle, Meego Harmattan, MeeGo ...

6.5CVSS6.8AI score0.00877EPSS
Exploits0References2
OSV
OSV
added 2023/05/10 6:15 a.m.5 views

AZL-26670 CVE-2023-32573 affecting package qt5-qtsvg for versions less than 5.15.9-1

In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont munitsPerEm initialization is mishandled...

6.5CVSS7AI score0.00877EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2023/01/26 8:0 a.m.98 views

November 8, 2022—KB5019966 (OS Build 17763.3650) - EXPIRED

None None...

8.8CVSS6.8AI score0.24623EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2022/10/25 12:0 a.m.4 views

October 25, 2022—KB5018482 (OS Builds 19042.2193, 19043.2193, and 19044.2193) Preview

None None...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2022/10/25 12:0 a.m.6 views

October 25, 2022—KB5018485 (OS Build 20348.1194) Preview

None None...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/06/18 12:0 a.m.5 views

June 18, 2019—KB4501371 (OS Build 17763.592)

None None...

6.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2019/04/17 3:51 p.m.6 views

OpenJDK: Font layout engine out of bounds access setCurrGlyphID() (2D, 8219022)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS7.4AI score0.12013EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2019/03/25 7:29 p.m.46 views

CVE-2019-10044

Telegram Desktop before 1.5.12 on Windows, and the Telegram applications for Android, iOS, and Linux, is vulnerable to an IDN homograph attack when displaying messages containing URLs. This occurs because the application produces a clickable link even if for example Latin and Cyrillic characters...

8.8CVSS8.7AI score0.0328EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2016/04/12 7:0 a.m.38 views

MS16-042: Description of the security update for Word Automation Services on SharePoint Server 2013: April 12, 2016

MS16-042: Description of the security update for Word Automation Services on SharePoint Server 2013: April 12, 2016 Summary This security update resolves vulnerabilities in SharePoint that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these...

9.3CVSS8.1AI score0.19541EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2015/06/14 12:0 a.m.3 views

PT-2016-1278 · Mozilla +6 · Firefox Esr +7

Name of the Vulnerable Software and Affected Versions: Libgraphite versions 1.2.4 Mozilla Firefox versions prior to 43.0 Firefox ESR versions prior to 38.6.1 Description: The issue is related to the SillMap::readFace function in FeatureMap.cpp, which mishandles a return value. This can be exploit...

10CVSS6.4AI score0.0831EPSS
Exploits1References167
Rows per page
Query Builder