FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
cf133acc-82e7-4755-a66a-5ddf90dacbe6graphite2 -- out-of-bounds write with malicious font

Mozilla Foundation reports:

An out-of-bounds write in the Graphite 2 library triggered with a maliciously crafted Graphite font. This results in a potentially exploitable crash. This issue was fixed in the Graphite 2 library as well as Mozilla products.


Discovery 2017-04-19
Entry 2017-04-19
Modified 2017-04-20
graphite2
< 1.3.9_1

linux-c7-graphite2
< 1.3.10

CVE-2017-5436
https://github.com/silnrsi/graphite/commit/1ce331d5548b