17 matches found
EUVD-2024-39569
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-42358
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files c...
CVE-2024-42358
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
DEBIAN-CVE-2024-42358
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
CVE-2024-42358
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
CVE-2024-42358
PDFio contains a denial-of-service vulnerability in its TTF parser. A crafted TrueType font can trigger an infinite loop in read_camp by manipulating nGroups, causing 100% memory usage and a heap-buffer-overflow. The ttf.h component is implicated; impact is local and leads to DOS if exploited thr...
CVE-2024-42358 Loop with Unreachable Exit Condition ('Infinite Loop') in pdfio
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
CVE-2024-42358 Loop with Unreachable Exit Condition ('Infinite Loop') in pdfio
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
CVE-2024-42358 Loop with Unreachable Exit Condition ('Infinite Loop') in pdfio
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
CVE-2024-42358
PDFio is a simple C library for reading and writing PDF files. There is a denial of service DOS vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability...
RUSTSEC-2020-0020 `stb_truetype` crate has been deprecated; use `ttf-parser` instead
This crate was maintained for use in rusttype which has switched to use ttf-parser...
`stb_truetype` crate has been deprecated; use `ttf-parser` instead
This crate was maintained for use in rusttype which has switched to use ttf-parser...
SWFTools 'readBlock()' heap buffer read vulnerability
SWFTools is a suite of open source software tools for creating and manipulating SWF files. A heap buffer read vulnerability exists in the 'readBlock' function of the lib/ttf.c file in SWFTools version 0.9.2. The vulnerability can be exploited to cause a heap buffer out-of-bounds read with the hel...
CVE-2017-4909
VMware Workstation 12.x prior to 12.5.3 and Horizon View Client 4.x prior to 4.4.0 contain a heap buffer-overflow vulnerability in TrueType Font TTF parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs...
CVE-2017-4912
CVE-2017-4912 is one of multiple out-of-bounds read/write vulnerabilities in VMware TPView.dll’s JPEG2000/TrueType Font parsers that affect VMware Workstation (12.x before 12.5.3) and Horizon View Client (4.x before 4.4.0). The issue arises in the TPView.dll TTF/TFP parsing code and can lead to c...
CVE-2017-4909
CVE-2017-4909 affects VMware Workstation 12.x (pre-12.5.3) and Horizon View Client 4.x (pre-4.4.0). The vulnerability is a heap buffer overflow in the TPView.dll TTF/ JPEG2000 parsing in Cortado ThinPrint, enabling guest-host code execution or Denial of Service on Windows hosts/guests. Exploitati...
RHEL 5 / 6 : freetype (RHSA-2012:0467)
The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0467 advisory. FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual...