vulnerability

SUSE: CVE-2017-11570: SUSE Linux Security Advisory

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	2017-07-23	2019-12-20	2019-12-20

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

2017-07-23

Added

2019-12-20

Modified

2019-12-20

Description

FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or code execution via a crafted otf file.

suse-upgrade-fontforge

NEW

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.