Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readStrings.
cf4bfe42dda84668b42617981dc6722b34f026c966dfa5c20e002f103ed59da1
Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to incorrect handling of blendArray.
04a1b32bb8fb2c91b1b0b567ecd691256c5c85bedc90cda40c7de13c5e385668
Microsoft DirectWrite / AFDKO suffers from an interpreter stack underflow in OpenType font handling due to missing CHKUFLOW.
adff25b8214c8313e2c7f6d804197ec798b268aef4bbae69ece436523ed95da1
Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readFDSelect.
276645f96ebe21844771be3cbdc0c6d384ebe2a8d5bdb89b4c51e20d0c5fc375
An issue has been discovered where the Microsoft Font Subsetting DLL (fontsub.dll) suffers from a heap-based out-of-bounds read vulnerability in MergeFonts.
59bdcf0c53bae14944835fcc600e7d18a2f131991f8e5f86054a589716d13344
A heap corruption was observed in Oracle Java Runtime Environment version 8u202 (latest at the time of this writing) while fuzz-testing the processing of TrueType fonts.
3c3d35dfc5426eaa61ae91b3e754f6e09c909445eb2f9484504d724fdedd1db5
A heap corruption was observed in Oracle Java Runtime Environment version 8u202 (latest at the time of this writing) while fuzz-testing the processing of TrueType, implemented in a proprietary t2k library.
cc1fdb072ca05f2a5b04c3cb9301fdc0fce66245b901c57e61aba6f76f5054ec
tcpdump was found to suffer from multiple out-of-bounds read vulnerabilities.
cea131972888984634d05f66fcb925a4eaa31822c00269467fbc5939cb230885
A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of TrueType fonts rendering in AlternateSubstitutionSubtable::process.
711068adf214eb589d571d06d8497f1cfb5051a638536518b30c31c08d5d0231
A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of TrueType fonts rendering in ExtractBitMap_blocClass.
c633eac93bf0e7c462b6b00a53b37cc8e7ff75a886777b884ba9d2a9adddd340
A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of TrueType fonts rendering in OpenTypeLayoutEngine::adjustGlyphPositions.
8072fd67d9119178fb46d344eb4a8fda71b6df05c2e1c3da919b750402bf6b0d
A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of OpenType fonts.
4d8d5ca2f36f83581e05d720df16bb20df75234f7e22c3f5f23ea14ed72874eb
Wireshark suffers from a get_t61_string heap out-of-bounds read vulnerability.
e78bb2f18e5c8a09bd4bc2e09df300bcd8466772f61124b02d3646830c2a39cb
Wireshark suffers from a stack corruption vulnerability in cdma2k_message_ACTIVE_SET_RECORD_FIELDS.
648aebeecb465b2b3cc78d44d54466abadfa3a8a23706779212035ef37b1e1cf
Wireshark suffers from a heap out-of-bounds read in find_signature.
41bc98d3cbc6e5394de02b36384419b632fa175b3e95c6ff855f2a6e83b86a5c
The Microsoft Windows kernel suffers from an OTF font processing pool-based buffer overflow via a malformed GPOS table in ATMFD.DLL.
3a0dd89da47b95f5a083912d36f82fce3063810755a85de392b0b198f01a5702
The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in nt!NtQueryVirtualMemory (MemoryImageInformation).
5458ec761f8a4b255ff18e3271dfa2a935db5cfae221b3c8425221a565912763
The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in nt!NtQueryVirtualMemory (Memory(Privileged)BasicInformation).
928879257dea4617a040d610f464e8b6046a35a00e6e51d936ae09b59aab3fe2
The Microsoft Windows kernel suffers from a 64-bit pool / stack memory disclosure vulnerability in nt!NtQueryInformationProcess (ProcessImageFileName).
38d3a4e79d311c48ef8275934fe25dadb12b525df723ee641df781e85555bfa3
The Microsoft Windows kernel suffers from a pool memory disclosure vulnerability in nt!NtQueryInformationTransactionManager (TransactionManagerRecoveryInformation).
cfa9d5fbf3ba18a36c6cd31a41858c361146436e5faf31f1e6bec359a461e197
The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in nt!NtQuerySystemInformation (SystemPageFileInformation(Ex)).
e8b3cda2b701821d065afd626b4d2ed450299d80ac4db2a3876d5f69ebf300d7
The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryVolumeInformationFile.
1ef6ca1bcb309d3c1103311edbe61fa4468388d80dae55015468437ca50d2250
The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryAttributesFile.
90734e9c9b14b014b0e96df76305d90941ef419f772623576a1d5305cc170d73
The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryFullAttributesFile.
5b4fe87c0968b368a0d718385c8392e00931cb81a8aa3931a92c60b2c56b0b4b
The Microsoft compiler mspdbcore.dll suffers from a heap memory disclosure into output .pdb files. This affects Microsoft Symbol Server.
005199a3345b019bfc7e71e839648cb178fbbab4dd5219b2b6b06bea5751b3dc