Lucene search
+L

10 matches found

susecve
susecve
added 2023/02/15 4:42 a.m.3 views

SUSE CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

6.3CVSS8.5AI score0.00707EPSS
Exploits0References4
veracode
veracode
added 2018/04/13 4:39 a.m.17 views

Denial Of Service (DoS)

libfontforge.so is vulnerable to denial of service DoS through stack-based under flow attacks. The vulnerability exists as it failed to check if the weight vector in the readcfftopdict function of parsettf.c is positive, allowing a malicious otf file to cause a denial of service DoS through...

5.5CVSS5.8AI score0.00707EPSS
Exploits0References5Affected Software1
redhatcve
redhatcve
added 2017/07/26 2:50 p.m.16 views

CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

5.5CVSS2.4AI score0.00707EPSS
Exploits0References1
cnvd
cnvd
added 2017/07/24 12:0 a.m.5 views

FontForge Denial of Service Vulnerability

FontForge is an open source font editing tool that supports multiple languages. A security vulnerability exists in the weight vector memcpy call to readcfftopdict in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service with the help of an otf file...

5.5CVSS6.7AI score0.00707EPSS
Exploits0References1
nvd
nvd
added 2017/07/23 10:29 p.m.12 views

CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

5.5CVSS6.2AI score0.00707EPSS
Exploits0References2
osv
osv
added 2017/07/23 10:29 p.m.0 views

DEBIAN-CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

5.5CVSS6.2AI score0.00707EPSS
Exploits0References1
cve
cve
added 2017/07/23 10:0 p.m.86 views

CVE-2017-11576

CVE-2017-11576 affects FontForge (min. FontForge 20161012). The root cause is a check failure in a weight vector memcpy in readcfftopdict (parsettf.c), which can lead to a denial of service or recovery via a crafted OpenType font file. Public sources in connected documents confirm the vulnerabili...

5.5CVSS5.9AI score0.00707EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2017/07/23 10:0 p.m.40 views

CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

5.5CVSS6.4AI score0.00707EPSS
Exploits0
ubuntucve
ubuntucve
added 2017/07/23 12:0 a.m.17 views

CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

5.5CVSS6.8AI score0.00707EPSS
Exploits0References3
osv
osv
added 2017/07/23 12:0 a.m.4 views

UBUNTU-CVE-2017-11576

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...

5.5CVSS6.8AI score0.00707EPSS
Exploits0References4
Rows per page
Query Builder