user/fontforge: multiple vulnerabilities
Bugzilla ID | 276 |
Alias(es) | CVE-2017-17521, CVE-2019-15785, CVE-2020-25690, CVE-2020-5395, CVE-2020-5496 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-04-29 12:08:47 -0500 |
Modified | 2020-12-03 22:51:42 -0600 |
Status | UNCONFIRMED |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Package(s) | user/fontforge |
Description
CVE-2020-5395: https://nvd.nist.gov/vuln/detail/CVE-2020-5395
FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in
sfd.c.
https://github.com/fontforge/fontforge/commit/048a91e2682c1a8936ae34dbc7bd70291ec05410
CVE-2020-5496: https://nvd.nist.gov/vuln/detail/CVE-2020-5496
FontForge 20190801 has a heap-based buffer overflow in the
Type2NotDefSplines() function in splinesave.c.
same commit