EPSS
Percentile
72.1%
There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack.
bugzilla.redhat.com/show_bug.cgi?id=1576111