Anishsujanani

**Name of the Vulnerable Software and Affected Versions** pcf2bdf versions 1.05 and later **Description** A heap-buffer-overflow in pcf2bdf allows an attacker to trigger unsafe memory access via a specially crafted PCF font file. This out-of-bound read may lead to an application crash, information disclosure via program memory or other context-dependent impact. **Recommendations** For versions 1.05 and later, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** pcf2bdf versions 1.05 and later **Description** A segmentation fault during PCF file parsing allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components. **Recommendations** For versions 1.05 and later, update to a version that fixes the segmentation fault issue to prevent program crashes via specially crafted PCF font files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.