[SECURITY] Fedora 44 Update: freetype-2.14.3-1.fc44

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

openSUSE 16 : Recommended update for gimp (SUSE-SU-openSUSE-RU-2026:20168-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-openSUSE-RU-2026:20168-1 advisory. Changes in gimp: - Update to 3.0.8 - Font Loading Performance - Improvements in start-up time for users with a large number of fonts was...

OPENSUSE-RU-2026:20168-1 Recommended update for gimp

This update for gimp fixes the following issues: Changes in gimp: - Update to 3.0.8 - Font Loading Performance - Improvements in start-up time for users with a large number of fonts was backported from our 3.2 RC2 release. As a result, we now wait to load images until fonts are initialized - this...

Raylib input validation vulnerability

Raylib is a simple and easy-to-use library developed by the creators of raysan5, designed for video game programming. Versions of RAYLIB 909f040 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from an integer overflow in the LoadFontData functi...

CVE-2020-10566

grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, mishandles font loading by a guest through a grub2.cfg file, leading to a buffer overflow...

EUVD-2020-3018

Malware in sbrugna...

EUVD-2017-6184

Malware in sbrugna...

EUVD-2022-48279

Malicious code in bioql PyPI...

CVE-2024-10495

An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects...

PT-2024-16317 · National Instruments · Ni Labview

Name of the Vulnerable Software and Affected Versions: NI LabVIEW versions prior to 2024 Q3 Description: An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp may disclose information or result in arbitrary code execution. Successful exploitation requir...

SUSE CVE-2023-43114

An issue was discovered in Qt before 5.15.16, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3 on Windows. When using the GDI font engine, if a corrupted font is loaded via QFontDatabase::addApplicationFontFromData, then it can cause the application to crash because of missing length check...

UBUNTU-CVE-2023-43114

An issue was discovered in Qt before 5.15.16, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3 on Windows. When using the GDI font engine, if a corrupted font is loaded via QFontDatabase::addApplicationFontFromData, then it can cause the application to crash because of missing length check...

Qt Security Vulnerabilities

Qt is a cross-platform C++ application development framework from the Norwegian company Qt. It is widely used to develop GUI programs, in which case it is also known as the widget toolkit. Can also be used to develop non-GUI programs, such as console tools and servers. A security vulnerability...

PT-2023-35761 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state involves functions such as pdfi read cff font, pdfi load font buffer, and pdfi load...

SUSE CVE-2022-45407

If an attacker loaded a font using FontFace on a background worker, a use-after-free could have occurred, leading to a potentially exploitable crash. This vulnerability affects Firefox 107...

Design/Logic Flaw

If an attacker loaded a font using FontFace on a background worker, a use-after-free could have occurred, leading to a potentially exploitable crash. This vulnerability affects Firefox 107...

CVE-2022-45407

If an attacker loaded a font using FontFace on a background worker, a use-after-free could have occurred, leading to a potentially exploitable crash. This vulnerability affects Firefox 107...

MAL-2022-3248 Malicious code in fusion-plugin-font-loading (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be24efc5a9c2d3f7b12c25c1c3236c9b0d9c2edeb06ffcfb4d1de013d764d1aa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fusion-plugin-font-loading (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be24efc5a9c2d3f7b12c25c1c3236c9b0d9c2edeb06ffcfb4d1de013d764d1aa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Slow performance in applications that use the DirectWrite API on a computer that is running Windows 7 or Windows Server 2008 R2

Slow performance in applications that use the DirectWrite API on a computer that is running Windows 7 or Windows Server 2008 R2 Symptoms On a computer that is running Windows 7 or Windows Server 2008 R2, you may experience slow performance in applications that use the DirectWrite API for example,...