CVE-2020-25690

Published: 23 February 2021

An out-of-bounds write flaw was found in FontForge in versions before 20200314 while parsing SFD files containing certain LayerCount tokens. This flaw allows an attacker to manipulate the memory allocated on the heap, causing the application to crash or execute arbitrary code. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Priority

Medium

CVSS 3 base score: 8.8

Status

Package Release Status
fontforge
Launchpad, Ubuntu, Debian
Upstream Not vulnerable
(debian: Insufficient patch for CVE-2020-5395 not applied)
Ubuntu 21.04 (Hirsute Hippo) Needs triage

Ubuntu 20.10 (Groovy Gorilla) Needs triage

Ubuntu 20.04 LTS (Focal Fossa) Needs triage

Ubuntu 18.04 LTS (Bionic Beaver) Needs triage

Ubuntu 16.04 LTS (Xenial Xerus) Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Notes

AuthorNote
amurray
This is a Red Hat specific CVE due to an insufficient backport of the upstream patch in CVE-2020-5395. Since that CVE is not yet patched in Ubuntu, I am adding this CVE to be tracked so we don't make the same mistake.

References