Nixpkgs security tracker
Permalink
CVE-2026-34085
5.9 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): LOW
- Availability impact (A): LOW
fontconfig before 2.17.1 has an off-by-one error in allocation during …
fontconfig before 2.17.1 has an off-by-one error in allocation during sfnt capability handling, leading to a one-byte out-of-bounds write, and potentially a crash or code execution. This is in FcFontCapabilities in fcfreetype.c.
References
Affected products
fontconfig
- <2.17.1
Matching in nixpkgs
pkgs.fontconfig
Library for font customization and configuration
pkgs.ocamlPackages.fontconfig
Fontconfig bindings for OCaml
-
nixos-unstable 2013-11-03
- nixpkgs-unstable 2013-11-03
- nixos-unstable-small 2013-11-03
-
nixos-25.11 2013-11-03
- nixos-25.11-small 2013-11-03
- nixpkgs-25.11-darwin 2013-11-03
pkgs.ocamlPackages_latest.fontconfig
Fontconfig bindings for OCaml
-
nixos-unstable 2013-11-03
- nixpkgs-unstable 2013-11-03
- nixos-unstable-small 2013-11-03
pkgs.python312Packages.python-fontconfig
Python binding for Fontconfig
pkgs.python313Packages.python-fontconfig
Python binding for Fontconfig
pkgs.python314Packages.python-fontconfig
Python binding for Fontconfig
Package maintainers
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>
-
@vbgl Vincent Laporte <Vincent.Laporte@gmail.com>