Lucene search
K

221 matches found

Fedora
Fedora
added 2012/01/28 3:28 a.m.31 views

[SECURITY] Fedora 15 Update: t1lib-5.1.2-9.fc15

T1lib is a rasterizer library for Adobe Type 1 Fonts. It supports rotation and transformation, kerning underlining and antialiasing. It does not depend on X11, but does provides some special functions for X11. AFM-files can be generated from Type 1 font files and font subsetting is possible...

7.6CVSS1.8AI score0.1427EPSS
Exploits0
Fedora
Fedora
added 2012/01/28 3:23 a.m.34 views

[SECURITY] Fedora 16 Update: t1lib-5.1.2-9.fc16

T1lib is a rasterizer library for Adobe Type 1 Fonts. It supports rotation and transformation, kerning underlining and antialiasing. It does not depend on X11, but does provides some special functions for X11. AFM-files can be generated from Type 1 font files and font subsetting is possible...

7.6CVSS1.8AI score0.1427EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/01/25 12:0 a.m.44 views

RHEL 6 : t1lib (RHSA-2012:0062)

Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.6CVSS6.3AI score0.1427EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2012/01/24 9:3 p.m.6 views

t1lib: Use-after-free via crafted Type 1 font

Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory write, a different...

4.3CVSS5.9AI score0.05417EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/01/24 9:3 p.m.5 views

t1lib: Off-by-one via crafted Type 1 font

Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid...

4.3CVSS5.9AI score0.05417EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/01/24 9:3 p.m.51 views

Moderate: Red Hat Security Advisory: t1lib security update

Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.6CVSS6.4AI score0.1427EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2012/01/24 9:3 p.m.6 views

t1lib: invalid read crash via crafted Type 1 font

t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, reads from invalid memory locations, which allows remote attackers to cause a denial of service application crash via a crafted Type 1 font in a PDF document, a different vulnerability than CVE-2011-0764...

4.3CVSS5.9AI score0.10378EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2012/01/24 12:0 a.m.41 views

t1lib security update

5.1.2-6.1 - Fixed CVE-2010-2642, CVE-2011-0433, CVE-2011-0764, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554 Resolves: rhbz772900...

7.6CVSS1.3AI score0.1427EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/01/20 12:0 a.m.35 views

Ubuntu Update for t1lib USN-1335-1

Ubuntu Update for Linux kernel vulnerabilities USN-1335-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13351.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for t1lib USN-1335-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

7.6CVSS0.4AI score0.1427EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/01/20 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-1335-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS6.8AI score0.1427EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/01/20 12:0 a.m.26 views

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : t1lib vulnerabilities (USN-1335-1)

Jon Larimer discovered that t1lib did not properly parse AFM fonts. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges. CVE-2010-2642, CVE-2011-0433 Jonathan Brossard discovered that...

7.6CVSS6AI score0.1427EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2012/01/19 8:16 p.m.55 views

USN-1335-1: t1lib vulnerabilities

Jon Larimer discovered that t1lib did not properly parse AFM fonts. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges. CVE-2010-2642, CVE-2011-0433 Jonathan Brossard discovered that...

7.6CVSS6AI score0.1427EPSS
Exploits0
securityvulns
securityvulns
added 2012/01/16 12:0 a.m.45 views

t1lib / xpdf library multiple security vulnerabilities

Multiple memory corruptions...

6.8CVSS2.6AI score0.13055EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2012/01/16 12:0 a.m.30 views

Debian DSA-2388-1 : t1lib - several vulnerabilities

Several vulnerabilities were discovered in t1lib, a Postscript Type 1 font rasterizer library, some of which might lead to code execution through the opening of files embedding bad fonts. - CVE-2010-2642 A heap-based buffer overflow in the AFM font metrics parser potentially leads to the executio...

7.6CVSS6.3AI score0.1427EPSS
Exploits0References15
Debian
Debian
added 2012/01/15 10:25 a.m.27 views

[SECURITY] [DSA 2388-1] t1lib security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2388-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez January 14, 2012 http://www.debian.org/security/faq -...

7.6CVSS7.3AI score0.1427EPSS
Exploits0
OSV
OSV
added 2012/01/14 12:0 a.m.27 views

DSA-2388-1 t1lib - several

Bulletin has no description...

7.6CVSS7.7AI score0.1427EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/01/13 12:0 a.m.23 views

Mandriva Update for t1lib MDVSA-2012:004 (t1lib)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.6CVSS5.2AI score0.1427EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/01/13 12:0 a.m.29 views

Mandriva Linux Security Advisory : t1lib (MDVSA-2012:004)

Multiple vulnerabilities has been found and corrected in t1lib : A heap-based buffer overflow flaw was found in the way AFM font file parser, used for rendering of DVI files, in GNOME evince document viewer and other products, processed line tokens from the given input stream. A remote attacker...

7.6CVSS6.6AI score0.1427EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2012/01/13 12:0 a.m.29 views

CVE-2011-0433

Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics AFM...

6.8CVSS6.3AI score0.0421EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/01/09 12:0 a.m.33 views

Mandriva Update for t1lib MDVSA-2012:002 (t1lib)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS5.2AI score0.13055EPSS
Exploits0References2
Rows per page
Query Builder