Lucene search
+L

13 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/25 12:0 a.m.16 views

Alibaba Cloud Linux 3 : 0122: java-17-openjdk (ALINUX3-SA-2026:0122)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0122 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-22007: No description is availabl...

7.5CVSS7.3AI score0.00702EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7611

Malware in sbrugna...

9.3CVSS9.1AI score0.08512EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2025/05/19 12:0 a.m.24 views

[ASA-202505-11] freetype2: arbitrary code execution

Arch Linux Security Advisory ASA-202505-11 ========================================== Severity: High Date : 2025-05-19 CVE-ID : CVE-2025-27363 Package : freetype2 Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-2877 Summary ======= The package freetype2 befo...

8.1CVSS9.1AI score0.26049EPSS
Exploits1References4
F5 Networks
F5 Networks
added 2025/04/21 12:40 a.m.11 views

K000150937: Freetype vulnerability CVE-2025-27363

Security Advisory Description An out of bounds write exists in FreeType versions 2.13.0 and below newer versions of FreeType are not vulnerable when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an...

8.1CVSS8AI score0.26049EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.24 views

AlmaLinux 8 : freetype (ALSA-2025:3421)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:3421 advisory. freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files CVE-2025-27363 Tenable has extracted the...

8.1CVSS7.2AI score0.26049EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2025/03/31 1:54 a.m.12 views

Important: Red Hat Security Advisory: freetype security update

An update for freetype is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

8.1CVSS7AI score0.26049EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/03/31 1:52 a.m.11 views

Important: Red Hat Security Advisory: freetype security update

An update for freetype is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

8.1CVSS7AI score0.26049EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/11 1:28 p.m.311 views

CVE-2025-27363

An out of bounds write exists in FreeType versions 2.13.0 and below newer versions of FreeType are not vulnerable when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a...

8.1CVSS0.26049EPSS
Exploits1References1
CVE
CVE
added 2025/03/11 1:28 p.m.690 views

CVE-2025-27363

CVE-2025-27363 affects FreeType versions 2.13.0 and earlier, with an out-of-bounds write when parsing font subglyphs for TrueType GX and variable fonts. The vulnerable code writes up to 6 signed long integers past a too-small heap buffer after an incorrect cast, potentially enabling arbitrary cod...

8.1CVSS8.3AI score0.26049EPSS
In wildExploits1References17Affected Software1
Debian CVE
Debian CVE
added 2025/03/11 1:28 p.m.16 views

CVE-2025-27363

An out of bounds write exists in FreeType versions 2.13.0 and below newer versions of FreeType are not vulnerable when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a...

8.1CVSS7.9AI score0.26049EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2022/05/13 2:30 p.m.9 views

CVE-2022-28824 Adobe FrameMaker Font Parsing Use-After-Free Remote Code Execution Vulnerability

Adobe Framemaker versions 2029u8 and earlier and 2020u4 and earlier are affected by a Use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.02579EPSS
Exploits0References1
OSV
OSV
added 2019/11/13 8:15 p.m.7 views

CVE-2010-4653

An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts...

6.5CVSS7AI score0.01822EPSS
Exploits0References7
OSV
OSV
added 2016/02/05 5:26 p.m.31 views

MGASA-2016-0048 Updated java-1.8.0-openjdk/copy-jdk-configs/lua-lunit/lua-posix packages fix security vulnerability

An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox...

10CVSS7.1AI score0.14714EPSS
Exploits0References4
Rows per page
Query Builder