#VU8109 Denial of service in fontforge (Ubuntu package) - CVE-2017-11576
Vulnerability identifier: #VU8109
Vulnerability risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-20
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
fontforge (Ubuntu package)
Operating systems & Components /
Operating system package or component
Vendor: Canonical Ltd.
Description
The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.
The weakness exists due to an error when ensuring a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c). A remote attacker can trick the victim into opening a specially crafted otf file and cause the application to crash.
Successful exploitation of the vulnerability results in denial of service.
Mitigation
Update to the latest version.
Vulnerable software versions
fontforge (Ubuntu package): 20161012
External links
https://github.com/fontforge/fontforge/issues/3123
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
