Lucene search
+L

347 matches found

NVD
NVD
added 2022/02/17 2:15 p.m.21 views

CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.5CVSS0.00671EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/17 2:15 p.m.6 views

CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.5CVSS6AI score0.00671EPSS
Exploits1References3
OSV
OSV
added 2022/02/17 2:15 p.m.7 views

DEBIAN-CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.5CVSS6.8AI score0.00671EPSS
Exploits1References1
Prion
Prion
added 2022/02/17 2:15 p.m.13 views

Design/Logic Flaw

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

4.3CVSS5.3AI score0.00671EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/02/17 2:15 p.m.40 views

CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.5CVSS6AI score0.00671EPSS
Exploits1References2
CVE
CVE
added 2022/02/17 1:44 p.m.113 views

CVE-2022-23319

The CVE-2022-23319 entry concerns a segmentation fault in the PCF file parser of pcf2bdf, affecting versions >= 1.05. The vulnerability triggers crash via a crafted PCF font, impacting software availability and dependent components. Connected sources (NVD, OSV, Debian/Tenable variants) confirm...

5.5CVSS5.2AI score0.00671EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2022/02/17 1:44 p.m.113 views

CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.5CVSS5.3AI score0.00671EPSS
Exploits1
Cvelist
Cvelist
added 2022/02/17 1:44 p.m.26 views

CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.6AI score0.00671EPSS
Exploits1References2
OSV
OSV
added 2022/02/17 1:44 p.m.12 views

CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions =1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components...

5.5CVSS6.6AI score0.00671EPSS
Exploits1References4
NVD
NVD
added 2022/02/17 1:15 p.m.33 views

CVE-2022-23318

A heap-buffer-overflow in pcf2bdf, versions = 1.05 allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact...

7.1CVSS0.0079EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/17 1:15 p.m.5 views

CVE-2022-23318

A heap-buffer-overflow in pcf2bdf, versions = 1.05 allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact...

7.1CVSS7AI score0.0079EPSS
Exploits1References3
Prion
Prion
added 2022/02/17 1:15 p.m.12 views

Heap overflow

A heap-buffer-overflow in pcf2bdf, versions = 1.05 allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact...

5.8CVSS6.4AI score0.0079EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2022/02/17 12:44 p.m.103 views

CVE-2022-23318

A heap-buffer-overflow in pcf2bdf, versions = 1.05 allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact...

7.1CVSS6.5AI score0.0079EPSS
Exploits1
Cvelist
Cvelist
added 2022/02/17 12:44 p.m.34 views

CVE-2022-23318

A heap-buffer-overflow in pcf2bdf, versions = 1.05 allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact...

6.7AI score0.0079EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/02/17 12:0 a.m.6 views

Pcf2bdf 资源管理错误漏洞

Pcf2bdf is a font decompiler by the Japanese individual developer Nayuta Taga. It is used to convert X fonts from a portable compiled format to a bitmap distribution format. pcf2bdf suffers from a resource management error vulnerability that allows an attacker to trigger a program crash via a...

5.5CVSS5.7AI score0.00671EPSS
Exploits1References3
Veracode
Veracode
added 2022/02/16 2:52 a.m.24 views

Denial Of Service (DoS)

IBM MQ is vulnerable to denial of service. An attacker is able to crash the system via maliciously crafted PCF messages...

6.5CVSS3.7AI score0.01619EPSS
Exploits0References4Affected Software3
Veracode
Veracode
added 2022/02/08 6:8 p.m.27 views

Privilege Escalation

Pivotal RabbitMQ for PCF is vulnerable to privilege escalation. The vulnerability exists due to the system using deterministically generated cookie that is shared between all machines when configured in a multi-tenant cluster allowing an attacker who can gain information about the network topolog...

8.5CVSS2.8AI score0.0183EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/01/13 12:1 a.m.13 views

OSV-2018-226 Heap-buffer-overflow in pcf_get_encodings

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9561 Crash type: Heap-buffer-overflow READ 1 Crash state: pcfgetencodings pcfloadfont PCFFaceInit...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/05/26 12:0 a.m.34 views

openSUSE Security Update : freetype2 (openSUSE-2020-704)

This update for freetype2 to version 2.10.1 fixes the following issues : Security issue fixed : - CVE-2018-6942: Fixed a NULL pointer dereference within ttinerp.c bsc1079603. Non-security issues fixed : - Update to version 2.10.1 - The bytecode hinting of OpenType variation fonts was flawed, sinc...

6.5CVSS6.7AI score0.02124EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/05/24 12:0 a.m.15 views

openSUSE: Security Advisory for freetype2 (openSUSE-SU-2020:0704-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.9AI score0.02124EPSS
Exploits0References2
Rows per page
Query Builder