Debian Fontforge vulnerabilities

CVE-2017-11577 [HIGH] CVE-2017-11577: fontforge - FontForge 20161012 is vulnerable to a buffer over-read in getsid (parsettf.c) re... FontForge 20161012 is vulnerable to a buffer over-read in getsid (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie: resolved (fixed in 1:201

CVE-2017-11571 [HIGH] CVE-2017-11571: fontforge - FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (... FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie: resolved (

CVE-2017-11568 [HIGH] CVE-2017-11568: fontforge - FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStrin... FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie:

CVE-2017-11569 [HIGH] CVE-2017-11569: fontforge - FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopy... FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie: re

CVE-2017-11574 [HIGH] CVE-2017-11574: fontforge - FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (... FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie: resolved (

CVE-2017-11575 [HIGH] CVE-2017-11575: fontforge - FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) res... FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: re

CVE-2017-11572 [HIGH] CVE-2017-11572: fontforge - FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopd... FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie: reso

CVE-2017-11576 [MEDIUM] CVE-2017-11576: fontforge - FontForge 20161012 does not ensure a positive size in a weight vector memcpy cal... FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c) resulting in DoS via a crafted otf file. Scope: local bookworm: resolved (fixed in 1:20170731~dfsg-1) bullseye: resolved (fixed in 1:20170731~dfsg-1) forky: resolved (fixed in 1:20170731~dfsg-1) sid: resolved (fixed in 1:20170731~dfsg-1) trixie: resol

CVE-2017-11570 [HIGH] CVE-2017-11570: fontforge - FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) r... FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2017-17521 [HIGH] CVE-2017-17521: fontforge - uiutil.c in FontForge through 20170731 does not validate strings before launchin... uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2017-11573 [HIGH] CVE-2017-11573: fontforge - FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFont... FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) resulting in DoS or code execution via a crafted otf file. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2010-4259 [MEDIUM] CVE-2010-4259: fontforge - Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cau... Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long CHARSET_REGISTRY header in a BDF font file. Scope: local bookworm: resolved (fixed in 0.0.20100501-4) bullseye: resolved (fixed in 0.0.20100501-4) forky: resolved (fixed in 0.0.20100501-4) sid: res