Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-23319 | 1 Pcf2bdf Project | 1 Pcf2bdf | 2022-02-24 | 4.3 MEDIUM | 5.5 MEDIUM |
A segmentation fault during PCF file parsing in pcf2bdf versions >=1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components. | |||||
CVE-2022-23318 | 1 Pcf2bdf Project | 1 Pcf2bdf | 2022-02-24 | 5.8 MEDIUM | 7.1 HIGH |
A heap-buffer-overflow in pcf2bdf, versions >= 1.05 allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact. |