FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  496062
Date:      2019-03-17
Time:      14:16:03Z
Committer: mandree

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
cf133acc-82e7-4755-a66a-5ddf90dacbe6graphite2 -- out-of-bounds write with malicious font

Mozilla Foundation reports:

An out-of-bounds write in the Graphite 2 library triggered with a maliciously crafted Graphite font. This results in a potentially exploitable crash. This issue was fixed in the Graphite 2 library as well as Mozilla products.


Discovery 2017-04-19
Entry 2017-04-19
Modified 2017-04-20
graphite2
lt 1.3.9_1

linux-c7-graphite2
lt 1.3.10

CVE-2017-5436
https://github.com/silnrsi/graphite/commit/1ce331d5548b