CVE-2019-19847

Опубликовано: 17 дек. 2019

Источник: debian

EPSS Низкий

Описание

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

Пакет	Статус	Версия исправления	Релиз	Тип
libspiro	fixed	1:20200505-1		package
libspiro	not-affected		jessie	package

https://github.com/fontforge/libspiro/issues/21
https://github.com/fontforge/libspiro/issues/21#issuecomment-567983822
https://github.com/fontforge/libspiro/commit/35233450c922787dad42321e359e5229ff470a1e

EPSS

Процентиль: 64%

0.00479

Низкий

CVE-2019-19847

CVSS3: 8.1

ubuntu

около 6 лет назад

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

CVE-2019-19847

CVSS3: 8.1

redhat

около 6 лет назад

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

CVE-2019-19847

CVSS3: 8.1

nvd

около 6 лет назад

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

CVE-2019-19847

CVSS3: 8.1

msrc

около 4 лет назад

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

GHSA-2j77-qrh4-5xjr

github

больше 3 лет назад

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

EPSS

Процентиль: 64%

0.00479

Низкий