Search CVE reports
1 – 6 of 6 results
(A heap buffer overflow due to missing size checking in the property bu ...)
2 affected packages
libxfont, libxfont2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libxfont | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libxfont2 | Not in release | Not in release | Not in release | — | — |
(A heap bufferflow in pcfReadFont() due to missing glyph bounds checkin ...)
2 affected packages
libxfont, libxfont2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libxfont | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libxfont2 | Not in release | Not in release | Not in release | — | — |
(A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 ...)
2 affected packages
libxfont, libxfont2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libxfont | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libxfont2 | Not in release | Not in release | Not in release | — | — |
In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.
3 affected packages
libxfont, libxfont1, libxfont2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libxfont | — | — | — | — | — |
| libxfont1 | — | — | — | — | — |
| libxfont2 | — | — | — | — | — |
In the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2 and 2.x before 2.0.2, a missing boundary check (for PCF files) could be used by local attackers authenticated to an Xserver for a buffer over-read, for...
3 affected packages
libxfont, libxfont1, libxfont2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libxfont | — | — | — | — | — |
| libxfont1 | — | — | — | — | — |
| libxfont2 | — | — | — | — | — |
In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information...
3 affected packages
libxfont, libxfont1, libxfont2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libxfont | — | — | — | — | — |
| libxfont1 | — | — | — | — | — |
| libxfont2 | — | — | — | — | — |