silnrsi/graphite

Releases36

Frequency5 months 1 week

Last Release 21 days ago

Stars185

Graphite is a "smart font" system developed specifically to handle the complexities of lesser-known languages of the world.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-50593 ↗	Jun 5, 2026Friday, 5 June 2026, 04:17	7.3 HIGH	—
Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range.
CVE-2018-7999 ↗	Mar 9, 2018Friday, 9 March 2018, 19:29	—	6.8 MEDIUM
In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in Segment.cpp during a dumbRendering operation, which may allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ttf file.