CVE-2025-50949

Medium CVSS: 6.5

FontForge v20230101 was discovered to contain a memory leak via the component DlgCreate8.

Vendor

Product

CWE

Yayın Tarihi

2025-10-23 16:15:49

Güncelleme

2025-10-27 20:18:04

Source Identifier

cve@mitre.org

KEV Date Added

CWE-401 Fontforge MEDIUM Fontforge 2025

https://github.com/fontforge/fontforge/pull/5491

High

CVE-2025-15277

FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability all…

High

CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote…

High

CVE-2025-15279

FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability all…

High

CVE-2025-15280

FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attacker…

High

CVE-2025-15271

FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability al…

High

CVE-2025-15272

FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows rem…