Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-11574

Опубликовано: 23 июл. 2017
Источник: debian

Описание

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
fontforgefixed1:20170731~dfsg-1package

Примечания

  • https://github.com/fontforge/fontforge/issues/3090

  • https://github.com/fontforge/fontforge/commit/62b6433a81ee7ed6e0ac2d6b09ac85b885046ac3

Связанные уязвимости

ubuntu логотип

CVE-2017-11574

CVSS3: 7.8
ubuntu
больше 8 лет назад

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.

redhat логотип

CVE-2017-11574

CVSS3: 3.3
redhat
больше 8 лет назад

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.

nvd логотип

CVE-2017-11574

CVSS3: 7.8
nvd
больше 8 лет назад

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.

github логотип

GHSA-pjhf-w726-7xhc

CVSS3: 7.8
github
больше 3 лет назад

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.

suse-cvrf логотип

SUSE-SU-2019:2236-1

suse-cvrf
больше 6 лет назад

Security update for fontforge