Lucene search
GoogleOSV:CVE-2020-25690HistoryFeb 23, 2021 - 4:15 a.m.
CVE-2020-25690
2021-02-2304:15:13
Google
osv.dev
5
An out-of-bounds write flaw was found in FontForge in versions before 20200314 while parsing SFD files containing certain LayerCount tokens. This flaw allows an attacker to manipulate the memory allocated on the heap, causing the application to crash or execute arbitrary code. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Related
cve
cve
CVE-2020-25690
2021-02-23 04:15:13
prion
prion
Heap overflow
2021-02-23 04:15:00
nvd
nvd
CVE-2020-25690
2021-02-23 04:15:13
cvelist
cvelist
CVE-2020-25690
2021-02-23 03:40:04
nessus
nessus
AlmaLinux 8 : fontforge (ALSA-2020:4844)
2022-02-09 00:00:00
openSUSE Security Update : fontforge (openSUSE-2020-2111)
2020-12-07 00:00:00
CentOS 8 : fontforge (CESA-2020:4844)
2021-02-01 00:00:00
debiancve
debiancve
CVE-2020-25690
2021-02-23 04:15:13
almalinux
almalinux
Moderate: fontforge security update
2020-11-03 12:40:50
mageia
mageia
Updated fontforge packages fix a security vulnerability
2020-11-08 17:14:27
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0405)
2022-01-28 00:00:00
redhatcve
redhatcve
CVE-2020-25690
2020-10-30 13:56:29
ubuntucve
ubuntucve
CVE-2020-25690
2021-02-23 00:00:00
suse
suse
Security update for fontforge (moderate)
2020-11-29 00:00:00
redhat
redhat
(RHSA-2020:4844) Moderate: fontforge security update
2020-11-03 12:40:50
veracode
veracode
Denial Of Service(DoS)
2020-11-05 03:18:50
osv
osv
Moderate: fontforge security update
2020-11-03 12:40:50