Download
| Alert*
oval:org.secpod.oval:def:117708
FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript , TrueType, OpenType and CID-keyed fonts. oval:org.secpod.oval:def:1504345 [20170731-14] - Resolves:rh#1790974 - CVE-2020-5395:out-of-bounds write in sfd.c oval:org.secpod.oval:def:1504433 [20120731b-13] - Resolves:rh#1790973 - CVE-2020-5395:out-of-bounds write in sfd.c oval:org.secpod.oval:def:1700429 An out-of-bounds write was discovered in fontforge while parsing SFD files containing very large LayerCount tokens. The flaw allows an attacker to overwrite data before a buffer allocated on the heap, thus causing the application to crash or execute arbitrary code oval:org.secpod.oval:def:117884 FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript , TrueType, OpenType and CID-keyed fonts. oval:org.secpod.oval:def:205617 FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript , TrueType, OpenType and CID-keyed fonts. Security Fix: * fontforge: out-of-bounds write in SFD_GetFontMetaData function in sfd.c For more details about the security issue, including ... |