fontforge security update

An update is available for fontforge. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FontForge is a font editor for outline and bitmap fonts. It supports a rang...

OPENSUSE-SU-2026:10122-1 fontforge-20251009-4.1 on GA media

These are all security issues fixed in the fontforge-20251009-4.1 package on the GA media of openSUSE Tumbleweed...

EUVD-2017-8681

Malware in sbrugna...

RLSA-2024:9439 Moderate: fontforge security update

FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: command injection via crafted archives or compressed files...

Moderate: Red Hat Security Advisory: fontforge security update

An update for fontforge is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Amazon Linux 2023 : fontforge, fontforge-devel (ALAS2023-2024-565)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-565 advisory. Splinefont in FontForge through 20230101 allows command injection via crafted filenames. CVE-2024-25081 Splinefont in FontForge through 20230101 allows command injection via crafted archives or...

DSA-5641-1 fontforge - security update

Bulletin has no description...

SUSE-SU-2024:0863-1 Security update for fontforge

This update for fontforge fixes the following issues: - CVE-2024-25081: Fixed command injection via crafted filenames bsc1220404. - CVE-2024-25082: Fixed command injection via crafted archives or compressed files bsc1220405...

OPENSUSE-SU-2020:2111-1 Security update for fontforge

This update for fontforge fixes the following issues: - fix for Use-after-free heap in the SFDGetFontMetaData function and the crash bsc1178308 CVE-2020-25690. This update was imported from the SUSE:SLE-15:Update update project...

OPENSUSE-SU-2020:0089-1 Security update for fontforge

This update for fontforge fixes the following issues: - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236. This update was imported from the SUSE:SLE-15:Update update project...

SUSE-SU-2020:0118-1 Security update for fontforge

This update for fontforge fixes the following issues: - CVE-2020-5395: Fixed a use-after-free in SFDGetFontMetaData bsc1160220. - CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines bsc1160236...

CVE-2020-5395

FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c...

CVE-2020-5395

FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c...

MGASA-2018-0037 Updated fontforge packages fix security vulnerability

It was discovered that FontForge, a font editor, did not correctly validate its input. An attacker could use this flaw by tricking a user into opening a maliciously crafted OpenType font file, thus causing a denial-of-service via application crash, or execution of arbitrary code CVE-2017-11568,...