|
255161
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11574
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255162
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11573
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255163
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11572
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255164
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11571
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255165
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11570
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255166
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11569
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255167
|
7.8 |
HIGH
Local
|
fontforge
|
fontforge
|
FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11568
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255168
|
7.5 |
HIGH
Network
|
debian
|
tor
|
debian/tor.init in the Debian tor_0.2.9.11-1~deb9u1 package for Tor was designed to execute aa-exec from the standard system pathname if the apparmor package is installed, but implements this incorre…
|
NVD-CWE-noinfo
|
CVE-2017-11565
|
2024-11-21 12:08 |
2017-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255169
|
7.5 |
HIGH
Network
|
libsass
|
libsass
|
There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.
|
CWE-674
Uncontrolled Recursion
|
CVE-2017-11556
|
2024-11-21 12:08 |
2017-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255170
|
7.5 |
HIGH
Network
|
libsass
|
libsass
|
There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service.
|
CWE-20
Improper Input Validation
|
CVE-2017-11555
|
2024-11-21 12:08 |
2017-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
