78 matches found
freetype: Information disclosure or denial of service via specially crafted font files
A flaw was found in Freetype. An integer overflow vulnerability exists when processing specially crafted OpenType variable fonts. A local attacker could exploit this by convincing a user to open a malicious font file, which may lead to an out-of-bounds read and potential information disclosure or...
freetype: Information disclosure or denial of service via specially crafted font files
A flaw was found in Freetype. An integer overflow vulnerability exists when processing specially crafted OpenType variable fonts. A local attacker could exploit this by convincing a user to open a malicious font file, which may lead to an out-of-bounds read and potential information disclosure or...
freetype: Information disclosure or denial of service via specially crafted font files
A flaw was found in Freetype. An integer overflow vulnerability exists when processing specially crafted OpenType variable fonts. A local attacker could exploit this by convincing a user to open a malicious font file, which may lead to an out-of-bounds read and potential information disclosure or...
Linux Distros Unpatched Vulnerability : CVE-2026-33812
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Parsing a malicious font file can cause excessive memory allocation. CVE-2026-33812 Note that Nessus relies on the presence of the package as reported by the...
CVE-2026-33812
Parsing a malicious font file can cause excessive memory allocation...
UBUNTU-CVE-2026-33812
Parsing a malicious font file can cause excessive memory allocation...
CVE-2026-33812
Parsing a malicious font file can cause excessive memory allocation...
CVE-2026-33812
CVE-2026-33812 affects golang.org/x/image, where parsing a malicious SFNT font can trigger excessive memory allocation. The connected CVE listing confirms the issue is caused by decoding a malicious font file (SFNT) and identifies golang.org/x/image as the affected component. The provided documen...
EUVD-2026-24245
Parsing a malicious font file can cause excessive memory allocation...
CVE-2026-33812 Excessive memory allocation when decoding malicious SFNT in golang.org/x/image
Parsing a malicious font file can cause excessive memory allocation...
GO-2026-4962 Excessive memory allocation when decoding malicious SFNT in golang.org/x/image
Parsing a malicious font file can cause excessive memory allocation...
PT-2026-34049
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Parsing a malicious font file can cause excessive memory allocation. Recommendations At the moment, there is no information about a newer version that contains a...
RLSA-2026:6628 Important: fontforge security update
FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: FontForge: Remote Code Execution via malicious SFD file...
RockyLinux 9 : fontforge (RLSA-2026:6628)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:6628 advisory. fontforge: FontForge: Remote Code Execution via malicious SFD file parsing CVE-2025-15270 Tenable has extracted the preceding description block directly from the...
ALSA-2026:6631 Important: fontforge security update
FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Type 3 and Type 0, TrueType, OpenType Type2 and CID-keyed fonts. Security Fixes: fontforge: FontForge: Remote Code Execution via malicious SFD file...
EUVD-2020-20435
Malware in sbrugna...
EUVD-2021-17670
Malware in sbrugna...
EUVD-2015-5820
Malware in sbrugna...
EUVD-2021-17672
Malware in sbrugna...
EUVD-2022-29003
Malicious code in bioql PyPI...