December 2017 - fonts-bugs - Fedora Mailing-Lists

[Bug 1500690] New: CVE-2017-13720 libXfont: Insufficient input validation in fontdir.c

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1500690 Bug ID: 1500690 Summary: CVE-2017-13720 libXfont: Insufficient input validation in fontdir.c Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: ajax(a)redhat.com, alexl(a)redhat.com, btissoir(a)redhat.com, caillon+fedoraproject(a)gmail.com, caolanm(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, jglisse(a)redhat.com, john.j5live(a)gmail.com, mbarnes(a)fastmail.com, rhughes(a)redhat.com, rstrode(a)redhat.com, sandmann(a)redhat.com It was discovered that libXfont incorrectly handled certain patterns in PatternMatch. A local attacker could use this issue to cause libXfont to crash, resulting in a denial of service, or possibly obtain sensitive information. Upstream patch: https://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=d1e670a4a8704b8... -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 3 months

1
3
0 / 0

[Bug 499358] New: [as_IN] [Codepoint- Additional Vowels] U+09E2 has error.

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. Summary: [as_IN] [Codepoint- Additional Vowels] U+09E2 has error. https://bugzilla.redhat.com/show_bug.cgi?id=499358 Summary: [as_IN] [Codepoint- Additional Vowels] U+09E2 has error. Product: Fedora Version: 10 Platform: All OS/Version: Linux Status: NEW Severity: medium Priority: low Component: pango AssignedTo: besfahbo(a)redhat.com ReportedBy: xinsun(a)redhat.com QAContact: extras-qa(a)fedoraproject.org CC: besfahbo(a)redhat.com, fedora-fonts-bugs-list(a)redhat.com Classification: Fedora Target Release: --- Description of problem: Input "09E2" with "RAW CODE" in gedit, the word has error. Version-Release number of selected component (if applicable): pangomm-2.14.1-1.fc10.x86_64 pango-1.22.3-1.fc10.i386 pango-1.22.3-1.fc10.x86_64 pango-devel-1.22.3-1.fc10.x86_64 How reproducible: Steps to Reproduce: 1.Select "RAW CODE" in scim-bridge. 2.Input "09E2" in gedit. Actual results: The result is ৢ and is different from the URL http://batman.bne.redhat.com/~indic/IndicTC/lang/as_IN/font/image/09E2.jpg Expected results: The word is same with the URL http://batman.bne.redhat.com/~indic/IndicTC/lang/as_IN/font/image/09E2.jpg Additional info: -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

5 years, 4 months

2
7
0 / 0

[Bug 1526142] New: CVE-2017-17521 fontforge: Command injetion in help function uiutil.c

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1526142 Bug ID: 1526142 Summary: CVE-2017-17521 fontforge: Command injetion in help function uiutil.c Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: psampaio(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com A flaw was found in FontForge through 20170731. uiutil.c does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. A different vulnerability than CVE-2017-17534. References: https://security-tracker.debian.org/tracker/CVE-2017-17521 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
5
0 / 0

[Bug 1475398] New: CVE-2017-11568 CVE-2017-11569 CVE-2017-11570 CVE-2017-11571 CVE-2017-11572 CVE-2017-11573 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577 fontforge : various flaws [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475398 Bug ID: 1475398 Summary: CVE-2017-11568 CVE-2017-11569 CVE-2017-11570 CVE-2017-11571 CVE-2017-11572 CVE-2017-11573 CVE-2017-11574 CVE-2017-11575 CVE-2017-11576 CVE-2017-11577 fontforge: various flaws [fedora-all] Product: Fedora Version: 26 Component: fontforge Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: kevin(a)scrye.com Reporter: anemec(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of fedora-all. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
13
0 / 0

[Bug 1475397] New: CVE-2017-11577 fontforge: Buffer over-read in getsid function

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475397 Bug ID: 1475397 Summary: CVE-2017-11577 fontforge: Buffer over-read in getsid function Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com FontForge 20161012 is vulnerable to a buffer over-read in getsid (parsettf.c) resulting in DoS or via a crafted otf file. Upstream issue: https://github.com/fontforge/fontforge/issues/3088 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
4
0 / 0

[Bug 1475396] New: CVE-2017-11576 fontforge: Does not ensure a positive size in a weight vector memcpy call in readcfftopdict function

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475396 Bug ID: 1475396 Summary: CVE-2017-11576 fontforge: Does not ensure a positive size in a weight vector memcpy call in readcfftopdict function Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c) resulting in DoS via a crafted otf file. Upstream issue: https://github.com/fontforge/fontforge/issues/3091 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
4
0 / 0

[Bug 1475393] New: CVE-2017-11575 fontforge: Buffer over-read in strnmatch function

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475393 Bug ID: 1475393 Summary: CVE-2017-11575 fontforge: Buffer over-read in strnmatch function Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c. Upstream issue: https://github.com/fontforge/fontforge/issues/3096 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
4
0 / 0

[Bug 1475392] New: CVE-2017-11574 fontforge: Heap-based buffer overflow in readcffset function

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475392 Bug ID: 1475392 Summary: CVE-2017-11574 fontforge: Heap-based buffer overflow in readcffset function Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS via a crafted otf file. Upstream issue: https://github.com/fontforge/fontforge/issues/3090 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
4
0 / 0

[Bug 1475391] New: CVE-2017-11573 fontforge: Buffer over-read in ValidatePostScriptFontName function

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475391 Bug ID: 1475391 Summary: CVE-2017-11573 fontforge: Buffer over-read in ValidatePostScriptFontName function Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) resulting in DoS via a crafted otf file. Upstream issue: https://github.com/fontforge/fontforge/issues/3098 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
3
0 / 0

[Bug 1475390] New: CVE-2017-11572 fontforge: Heap-based buffer over-read in readcfftopidcts function

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1475390 Bug ID: 1475390 Summary: CVE-2017-11572 fontforge: Heap-based buffer over-read in readcfftopidcts function Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, kevin(a)scrye.com, paul(a)frixxon.co.uk, pnemade(a)redhat.com FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS via a crafted otf file. Upstream issue: https://github.com/fontforge/fontforge/issues/3092 -- You are receiving this mail because: You are on the CC list for the bug.

5 years, 4 months

1
4
0 / 0

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

fonts-bugs December 2017