CVE-2017-17521
high
CVSS v3
8.8
CVSS v2
6.8
VIR risk
8.8
Description
uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534.
Predictions
Exploit likelihood
92%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2017-17521
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2017-17521.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | affected | |
| debian | bullseye | affected | |
| debian | forky | affected | |
| debian | sid | affected | |
| debian | trixie | affected | |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| fontforge | fontforge | {"endIncluding":"20170731"} | |
References
CWEs
CWE-74
Verify integrity in audit chain (admin only). AS-IS.