Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

11 – 18 of 18 results

CVE-2017-11576

Medium priority

Some fixes available 2 of 4

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c) resulting in DoS via a crafted otf file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2017-11575

Medium priority

Some fixes available 2 of 4

FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2017-11574

Medium priority

Some fixes available 2 of 4

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2017-11572

Medium priority

Some fixes available 2 of 4

FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2017-11571

Medium priority

Some fixes available 2 of 4

FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (parsettf.c) resulting in DoS or code execution via a crafted otf file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2017-11569

Medium priority

Some fixes available 2 of 4

FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2017-11568

Medium priority

Some fixes available 2 of 4

FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge Not affected Fixed
Show less packages

CVE-2010-4259

Low priority

Some fixes available 5 of 10

Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long CHARSET_REGISTRY header in a BDF font file.

1 affected packages

fontforge

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
fontforge
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. Next page
Export to JSON