AI Score
Confidence
High
EPSS
Percentile
72.1%
There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack.
lists.opensuse.org/opensuse-security-announce/2019-04/msg00005.html
access.redhat.com/errata/RHBA-2019:0327
access.redhat.com/errata/RHSA-2018:3140
access.redhat.com/errata/RHSA-2018:3505
bugzilla.redhat.com/show_bug.cgi?id=1574844