Описание
Gnome Fonts Viewer 3.34.0 contains a heap corruption vulnerability that allows attackers to trigger an out-of-bounds write by crafting a malicious TTF font file. Attackers can generate a specially crafted TTF file with an oversized pattern to cause an infinite malloc() loop and potentially crash the gnome-font-viewer process.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | deferred | 2026-01-30 |
| esm-infra/bionic | deferred | 2026-01-30 |
| esm-infra/focal | deferred | 2026-01-30 |
| esm-infra/xenial | deferred | 2026-01-30 |
| jammy | deferred | 2026-01-30 |
| noble | deferred | 2026-01-30 |
| questing | deferred | 2026-01-30 |
| upstream | needs-triage |
Показывать по
7.5 High
CVSS3
Связанные уязвимости
Gnome Fonts Viewer 3.34.0 contains a heap corruption vulnerability that allows attackers to trigger an out-of-bounds write by crafting a malicious TTF font file. Attackers can generate a specially crafted TTF file with an oversized pattern to cause an infinite malloc() loop and potentially crash the gnome-font-viewer process.
Gnome Fonts Viewer 3.34.0 contains a heap corruption vulnerability tha ...
Gnome Fonts Viewer 3.34.0 contains a heap corruption vulnerability that allows attackers to trigger an out-of-bounds write by crafting a malicious TTF font file. Attackers can generate a specially crafted TTF file with an oversized pattern to cause an infinite malloc() loop and potentially crash the gnome-font-viewer process.
7.5 High
CVSS3