Vulnerability Database
Blog
FAQ
Docs
SUSE-SU-2020:0118-1
See a problem?
Please try reporting it
to the source
first.
Source
https://www.suse.com/support/update/announcement/2020/suse-su-20200118-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0118-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2020:0118-1
Related
CVE-2020-5395
CVE-2020-5496
Published
2020-01-16T13:13:50Z
Modified
2020-01-16T13:13:50Z
Summary
Security update for fontforge
Details
This update for fontforge fixes the following issues:
CVE-2020-5395: Fixed a use-after-free in SFD_GetFontMetaData() (bsc#1160220).
CVE-2020-5496: Fixed a heap-based buffer overflow in Type2NotDefSplines() (bsc#1160236).
References
https://www.suse.com/support/update/announcement/2020/suse-su-20200118-1/
https://bugzilla.suse.com/1160220
https://bugzilla.suse.com/1160236
https://www.suse.com/security/cve/CVE-2020-5395
https://www.suse.com/security/cve/CVE-2020-5496
Affected packages
SUSE-SU-2020:0118-1 - OSV