46 matches found
CVE-2025-15273
A flaw was found in FontForge. This stack-based buffer overflow vulnerability occurs during the parsing of PFB Printer Font Binary files due to improper validation of user-supplied data length. A remote attacker could exploit this by convincing a user to open a specially crafted malicious PFB fil...
CVE-2025-15273
FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a...
CVE-2025-15273
FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a...
CVE-2025-15273
FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a...
FontForge 安全漏洞
FontForge is an open source font editing tool from fontforge that supports multiple languages. A security vulnerability exists in FontForge that stems from improper validation of data length when parsing PFB files, which could lead to a stack buffer overflow and remote code execution...
EUVD-2008-1806
Malware in sbrugna...
PT-2024-13321 · Tex Live +2 · Tex Live +2
Name of the Vulnerable Software and Affected Versions: Tex Live version 944e257 Description: The issue is related to a NULL pointer dereference in the writet1.c file located in texk/web2c/pdftexdir. This occurs when handling a crafted cmr10.pfb file. It is noted that the categorization of this...
SUSE CVE-2008-1806
Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...
Apple macOS libType1Scaler PFB Font Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the libType1Scaler library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...
Arbitrary Code Execution
freetype is vulnerable to arbitrary code execution. Multiple flaws were discovered in FreeType's Printer Font Binary PFB font-file format parser. If a user loaded a carefully crafted font-file with a program linked against FreeType, it could cause the application to crash, or possibly execute...
Arbitrary Code Execution
freetype is vulnerable to arbitrary code execution. The vulnerability exists as multiple flaws were discovered in FreeType's Printer Font Binary PFB font-file format parser. If a user loaded a carefully crafted font-file with a program linked against FreeType, it could cause the application to...
[SECURITY] Fedora 29 Update: t1utils-1.41-1.fc29
t1utils is a collection of programs for manipulating PostScript type 1 and type 2 fonts containing programs to convert between PFA ASCII format, PFB binary format, a human-readable and editable ASCII format, and Macintosh resource forks...
[SECURITY] Fedora 30 Update: t1utils-1.41-1.fc30
t1utils is a collection of programs for manipulating PostScript type 1 and type 2 fonts containing programs to convert between PFA ASCII format, PFB binary format, a human-readable and editable ASCII format, and Macintosh resource forks...
[SECURITY] Fedora 31 Update: t1utils-1.41-1.fc31
t1utils is a collection of programs for manipulating PostScript type 1 and type 2 fonts containing programs to convert between PFA ASCII format, PFB binary format, a human-readable and editable ASCII format, and Macintosh resource forks...
Fedora Update for t1utils FEDORA-2019-b2156dcba6
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
TeX Live Buffer Overflow Vulnerability
TeX Live is an international TeX user organization TUG developed a set of TeX electronic typesetting system. The system provides typesetting language, macro definition and other functions. A buffer overflow vulnerability exists in the 't1checkunusualcharstring' function of the writet1.c file in...
Medium: t1utils
Issue Overview: A buffer overflow flaw was found in the way t1utils processed, for example, certain PFB Printer Font Binary files. An attacker could use this flaw to potentially execute arbitrary code by tricking a user into processing a specially crafted PFB file with t1utils. Affected Packages:...
[SECURITY] Fedora 20 Update: t1utils-1.39-1.fc20
t1utils is a collection of programs for manipulating PostScript type 1 and type 2 fonts containing programs to convert between PFA ASCII format, PFB binary format, a human-readable and editable ASCII format, and Macintosh resource forks...
Fedora 12 : freetype-2.3.11-6.fc12 (2010-15785)
Mon Oct 4 2010 Marek Kasik 2.3.11-6 - Add freetype-2.3.11-CVE-2010-2805.patch Fix comparison. - Add freetype-2.3.11-CVE-2010-2806.patch Protect against negative stringsize. Fix comparison. - Add freetype-2.3.11-CVE-2010-2808.patch Check the total length of collected POST segments. - Add...
CVE-2010-2499
Buffer overflow in the MacReadPOSTResource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted LaserWriter PS font file with an embedded PFB fragment...