[Bug 659365] New: FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header [fedora-all]

bugzilla at redhat.com bugzilla at redhat.com
Thu Dec 2 16:27:48 UTC 2010 

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.

Summary: FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=659365

           Summary: FontForge: Stack-based buffer overflow by processing
                    specially-crafted CHARSET_REGISTRY font file header
                    [fedora-all]
           Product: Fedora
           Version: 14
          Platform: All
        OS/Version: Linux
            Status: NEW
          Keywords: Security, SecurityTracking
          Severity: low
          Priority: low
         Component: fontforge
        AssignedTo: kevin at tummy.com
        ReportedBy: jlieskov at redhat.com
         QAContact: extras-qa at fedoraproject.org
                CC: kevin at tummy.com, fonts-bugs at lists.fedoraproject.org
            Blocks: 659359
    Classification: Fedora
    Target Release: ---



This is an automatically created tracking bug!  It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.

For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.

For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs

When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.

Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=659359

Please note: this issue affects multiple supported versions of Fedora.
Only one tracking bug has been filed; please only close it when all
affected versions are fixed.


[bug automatically created by: add-tracking-bugs]

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the fonts-bugs mailing list