[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for fontforge issues

Thu Jan 1 20:15:24 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e4f8dd92 by Salvatore Bonaccorso at 2026-01-01T21:15:10+01:00
Add Debian bug reference for fontforge issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -545,40 +545,40 @@ CVE-2025-15356 (A vulnerability has been found in Tenda AC20 up to 16.03.08.12.
 CVE-2025-15354 (A flaw has been found in itsourcecode Society Management System 1.0. T ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2025-15280 (FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulner ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1188/
 CVE-2025-15279 (FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Co ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1184/
 CVE-2025-15278 (FontForge GUtils XBM File Parsing Integer Overflow Remote Code Executi ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1185/
 CVE-2025-15277 (FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Co ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1186/
 CVE-2025-15276 (FontForge SFD File Parsing Deserialization of Untrusted Data Remote Co ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1187/
 CVE-2025-15275 (FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1189/
 CVE-2025-15274 (FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1190/
 CVE-2025-15273 (FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Exe ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1191/
 CVE-2025-15272 (FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Exec ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1192/
 CVE-2025-15271 (FontForge SFD File Parsing Improper Validation of Array Index Remote C ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1193/
 CVE-2025-15270 (FontForge SFD File Parsing Improper Validation of Array Index Remote C ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1194/
 CVE-2025-15269 (FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulner ...)
-	- fontforge <unfixed>
+	- fontforge <unfixed> (bug #1124487)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1195/
 CVE-2025-15223 (A vulnerability was found in Philipinho Simple-PHP-Blog up to 94b5d3e5 ...)
 	NOT-FOR-US: Philipinho Simple-PHP-Blog



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4f8dd9276a95a7a30bd1b18f7e9f00f09befd89

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4f8dd9276a95a7a30bd1b18f7e9f00f09befd89
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260101/db8ff59d/attachment-0001.htm>
