Vulnerability CVE-2017-11576

Vulnerability Name:

CVE-2017-11576 (CCN-129237)

Assigned:

2017-07-23

Published:

2017-07-23

Updated:

2020-01-13

Summary:

FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c) resulting in DoS via a crafted otf file.

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
4.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

3.3 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
2.9 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

1.7 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2017-11576

Source: DEBIAN
Type: UNKNOWN
DSA-3958

Source: XF
Type: UNKNOWN
fontforge-cve201711576-dos(129237)

Source: CCN
Type: FontForge Web site
FontForge

Source: MISC
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/fontforge/fontforge/issues/3091

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2017-11576

Vulnerable Configuration:

Configuration 1:

cpe:/a:fontforge:fontforge:20161012:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:fontforge:fontforge:20161012:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201711576	V	CVE-2017-11576	2022-09-02
oval:org.opensuse.security:def:10230	P	Security update for libvirt (Important)	2022-01-05
oval:org.opensuse.security:def:10368	P	Security update for ruby2.5 (Important)	2021-12-01
oval:org.opensuse.security:def:10306	P	Security update for curl (Moderate)	2021-07-21
oval:org.opensuse.security:def:10260	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:11211	P	Security update for vlc (Moderate)	2021-05-12
oval:org.opensuse.security:def:10238	P	Security update for open-iscsi (Important)	2021-04-13
oval:org.opensuse.security:def:11189	P	Security update for libmysofa (Moderate)	2021-03-22
oval:org.opensuse.security:def:10387	P	Security update for subversion (Important)	2021-02-10
oval:org.opensuse.security:def:10353	P	Security update for java-11-openjdk (Important)	2021-02-09
oval:org.opensuse.security:def:16725	P	fontforge-20170731-11.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3889	P	fontforge-20170731-11.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17891	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:18333	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:10487	P	libbz2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18033	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:18997	P	Security update for fontforge (Moderate)	2020-12-01
oval:org.opensuse.security:def:10538	P	libreoffice-sdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18100	P	Security update for spice (Important)	2020-12-01
oval:org.opensuse.security:def:18242	P	Security update for virglrenderer (Moderate)	2020-12-01
oval:org.opensuse.security:def:17857	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18311	P	Security update for xmltooling (Important)	2020-12-01
oval:org.opensuse.security:def:10462	P	libHX-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17976	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:18971	P	Security update for glib2 (Important)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18064	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:10551	P	libtasn1-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18210	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:17849	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:18299	P	Security update for yodl (Moderate)	2020-12-01
oval:org.opensuse.security:def:125954	P	Security update for fontforge (Moderate)	2019-08-28
oval:com.ubuntu.xenial:def:2017115760000000	V	CVE-2017-11576 on Ubuntu 16.04 LTS (xenial) - medium.	2017-07-23
oval:com.ubuntu.artful:def:201711576000	V	CVE-2017-11576 on Ubuntu 17.10 (artful) - medium.	2017-07-23
oval:com.ubuntu.xenial:def:201711576000	V	CVE-2017-11576 on Ubuntu 16.04 LTS (xenial) - medium.	2017-07-23
oval:com.ubuntu.bionic:def:201711576000	V	CVE-2017-11576 on Ubuntu 18.04 LTS (bionic) - medium.	2017-07-23
oval:com.ubuntu.cosmic:def:2017115760000000	V	CVE-2017-11576 on Ubuntu 18.10 (cosmic) - medium.	2017-07-23
oval:com.ubuntu.cosmic:def:201711576000	V	CVE-2017-11576 on Ubuntu 18.10 (cosmic) - medium.	2017-07-23
oval:com.ubuntu.bionic:def:2017115760000000	V	CVE-2017-11576 on Ubuntu 18.04 LTS (bionic) - medium.	2017-07-23
oval:com.ubuntu.trusty:def:201711576000	V	CVE-2017-11576 on Ubuntu 14.04 LTS (trusty) - medium.	2017-07-23

BACK