Vulnerabilities > Fontforge

DATE CVE VULNERABILITY TITLE RISK
2017-07-23 CVE-2017-11572 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
2017-07-23 CVE-2017-11571 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-119
7.8
2017-07-23 CVE-2017-11570 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
2017-07-23 CVE-2017-11569 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
2017-07-23 CVE-2017-11568 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8