CVE-2025-50951

Опубликовано: 23 окт. 2025

Источник: debian

EPSS Низкий

Описание

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c.

Пакет	Статус	Версия исправления	Релиз	Тип
fontforge	unfixed			package

https://github.com/fontforge/fontforge/pull/5495
Fixed by: https://github.com/fontforge/fontforge/commit/dcb6efb85030c4bee2f18c6e46c20561d1c77a2b (20251009)
Negligible security impact

EPSS

Процентиль: 11%

0.00036

Низкий

CVE-2025-50951

CVSS3: 6.5

ubuntu

6 месяцев назад

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c.

CVE-2025-50951

CVSS3: 5.3

redhat

6 месяцев назад

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c.

CVE-2025-50951

CVSS3: 6.5

nvd

6 месяцев назад

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c.

GHSA-x45p-m5jm-48hc

CVSS3: 7.5

github

6 месяцев назад

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c.

EPSS

Процентиль: 11%

0.00036

Низкий