Lucene search
K

209 matches found

Fedora
Fedora
added 2017/05/06 11:52 p.m.31 views

[SECURITY] Fedora 24 Update: freetype-2.6.3-5.fc24

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

9.8CVSS1.5AI score0.04188EPSS
Exploits0
Fedora
Fedora
added 2017/05/06 5:15 p.m.31 views

[SECURITY] Fedora 26 Update: freetype-2.7.1-6.fc26

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

9.8CVSS1.5AI score0.04188EPSS
Exploits0
Fedora
Fedora
added 2017/03/13 11:53 p.m.23 views

[SECURITY] Fedora 24 Update: freetype-2.6.3-3.fc24

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

7.8CVSS1.5AI score0.03235EPSS
Exploits1
Fedora
Fedora
added 2017/03/12 9:57 p.m.24 views

[SECURITY] Fedora 25 Update: freetype-2.6.5-3.fc25

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

7.8CVSS1.5AI score0.03235EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.4 views

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::Slot::getAttr function Slot.cpp in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, arises due to buffer overflows. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects through a...

6.8CVSS7.9AI score0.02278EPSS
Exploits0References3Affected Software3
Ubuntu
Ubuntu
added 2016/03/14 1:21 p.m.72 views

USN-2927-1: graphite2 vulnerabilities

It was discovered that graphite2 incorrectly handled certain malformed fonts. If a user or automated system were tricked into opening a specially- crafted font file, a remote attacker could use this issue to cause graphite2 to crash, resulting in a denial of service, or possibly execute arbitrary...

9.3CVSS8.4AI score0.04907EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2016/03/14 12:0 a.m.244 views

Debian DSA-3515-1 : graphite2 - security update

Multiple vulnerabilities have been found in the Graphite font rendering engine which might result in denial of service or the execution of arbitrary code if a malformed font file is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

9.3CVSS8.5AI score0.04907EPSS
Exploits1References17
Debian
Debian
added 2016/03/13 7:13 p.m.38 views

[SECURITY] [DSA 3515-1] graphite2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3515-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 13, 2016 https://www.debian.org/security/faq -...

9.3CVSS8.4AI score0.04907EPSS
Exploits1
NVD
NVD
added 2016/03/13 6:59 p.m.13 views

CVE-2016-2797

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...

8.8CVSS9.6AI score0.02718EPSS
Exploits0References26
OSV
OSV
added 2016/03/13 12:0 a.m.48 views

DSA-3515-1 graphite2 - security update

Bulletin has no description...

9.3CVSS9AI score0.04907EPSS
Exploits1
OpenVAS
OpenVAS
added 2016/03/13 12:0 a.m.42 views

Debian Security Advisory DSA 3515-1 (graphite2 - security update)

Multiple vulnerabilities have been found in the Graphite font rendering engine which might result in denial of service or the execution of arbitrary code if a malformed font file is processed. OpenVAS Vulnerability Test $Id: deb3515.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from...

9.3CVSS0.5AI score0.04907EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2016/03/12 12:0 a.m.39 views

Debian: Security Advisory (DSA-3515-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.04907EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2016/03/08 12:0 a.m.30 views

CVE-2016-2797

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...

8.8CVSS7.3AI score0.02718EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2016/02/22 12:0 a.m.43 views

Debian DSA-3479-1 : graphite2 - security update

Multiple vulnerabilities have been found in the Graphite font rendering engine which might result in denial of service or the execution of arbitrary code if a malformed font file is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

9.3CVSS7.8AI score0.0831EPSS
Exploits1References7
Ubuntu
Ubuntu
added 2016/02/17 2:46 p.m.81 views

USN-2902-1: graphite2 vulnerabilities

Yves Younan discovered that graphite2 incorrectly handled certain malformed fonts. If a user or automated system were tricked into opening a specially- crafted font file, a remote attacker could use this issue to cause graphite2 to crash, resulting in a denial of service, or possibly execute...

9.3CVSS7.6AI score0.0831EPSS
Exploits1
Debian
Debian
added 2016/02/15 10:43 p.m.33 views

[SECURITY] [DSA 3479-1] graphite2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3479-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 15, 2016 https://www.debian.org/security/faq -...

9.3CVSS8.7AI score0.0831EPSS
Exploits1
OSV
OSV
added 2016/02/15 12:0 a.m.30 views

DSA-3479-1 graphite2 - security update

Bulletin has no description...

9.3CVSS7.7AI score0.0831EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.28 views

Amazon Linux: Security Advisory (ALAS-2013-150)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.4AI score0.03857EPSS
Exploits0References2
NVD
NVD
added 2015/08/15 12:59 a.m.18 views

CVE-2015-2455

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Windows 10, Office 2007 SP3 and 2010 SP2, Live Meeting 2007 Console, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1,...

9.3CVSS7.3AI score0.37429EPSS
Exploits2References4
Cvelist
Cvelist
added 2015/05/20 10:0 a.m.20 views

CVE-2015-1262

platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted Unicode text...

6.9AI score0.01576EPSS
Exploits0References9
Rows per page
Query Builder