Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long CHARSET_REGISTRY header in a BDF font file.
- http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052201.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052219.html
- http://openwall.com/lists/oss-security/2010/12/02/5
- http://openwall.com/lists/oss-security/2010/12/02/8
- http://www.exploit-db.com/exploits/15732
- https://bugzilla.redhat.com/show_bug.cgi?id=659359
- https://github.com/mudongliang/LinuxFlaw
- https://github.com/oneoy/cve-