Описание
FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd.c.
An out-of-bounds write was discovered in fontforge while parsing SFD files containing very large LayerCount tokens. The flaw allows an attacker to overwrite data before a buffer allocated on the heap, thus causing the application to crash or execute arbitrary code.
Отчет
Impact of the flaw set to Moderate since upstream does not consider a network-facing application that accepts untrusted font files as a reasonable use of fontforge tool/library, making the impact of a possible exploitation of this flaw smaller.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | fontforge | Out of support scope | ||
| Red Hat Enterprise Linux 7 | fontforge | Fixed | RHSA-2020:3966 | 29.09.2020 |
| Red Hat Enterprise Linux 8 | fontforge | Fixed | RHSA-2020:1921 | 28.04.2020 |
Показывать по
Дополнительная информация
Статус:
EPSS
8.8 High
CVSS3
Связанные уязвимости
FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd.c.
FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd.c.
FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd. ...
FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd.c.
EPSS
8.8 High
CVSS3