logo

Database

Out-of-bounds read In fontforge

Description

FontForge 20190801 has a heap-based buffer overflow in the Type2NotDefSplines() function in splinesave.c.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2020-54962. NVD-2020-54963. OSV-DEBIAN-2020-54964. OSV-2020-54965. SECURITY-TRACKER-CVE-2020-5496

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.