CVE-2026-56003
- EPSS 0.58%
- Veröffentlicht 08.07.2026 09:25:41
- Zuletzt bearbeitet 09.07.2026 19:50:11
A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties() before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the...
CVE-2026-56001
- EPSS 0.37%
- Veröffentlicht 08.07.2026 09:16:30
- Zuletzt bearbeitet 09.07.2026 19:46:32
A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could be used by attackers able to access the X Server to execute code within the X server cont
CVE-2017-16611
- EPSS 0.42%
- Veröffentlicht 01.12.2017 17:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.
CVE-2007-5199
- EPSS 2.21%
- Veröffentlicht 18.08.2017 20:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
A single byte overflow in catalogue.c in X.Org libXfont 1.3.1 allows remote attackers to have unspecified impact.
CVE-2015-1804
- EPSS 4.92%
- Veröffentlicht 20.03.2015 14:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly perform type conversion for metrics values, which allows remote authenticated users to cause a denial of service (out-of-bounds...
CVE-2015-1803
- EPSS 4.86%
- Veröffentlicht 20.03.2015 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly handle character bitmaps it cannot read, which allows remote authenticated users to cause a denial of service (NULL pointer der...
CVE-2015-1802
- EPSS 4.86%
- Veröffentlicht 20.03.2015 14:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The bdfReadProperties function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 allows remote authenticated users to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a (1) negat...
CVE-2014-0209
- EPSS 0.44%
- Veröffentlicht 15.05.2014 14:55:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file ...
CVE-2014-0210
- EPSS 4.36%
- Veröffentlicht 15.05.2014 14:55:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, ...
CVE-2014-0211
- EPSS 4.36%
- Veröffentlicht 15.05.2014 14:55:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, wh...