X

Libxfont

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.58%
  • Veröffentlicht 08.07.2026 09:25:41
  • Zuletzt bearbeitet 09.07.2026 19:50:11

A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties() before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the...

  • EPSS 0.37%
  • Veröffentlicht 08.07.2026 09:16:30
  • Zuletzt bearbeitet 09.07.2026 19:46:32

A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could be used by attackers able to access the X Server to execute code within the X server cont

  • EPSS 0.42%
  • Veröffentlicht 01.12.2017 17:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.

Exploit
  • EPSS 2.21%
  • Veröffentlicht 18.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

A single byte overflow in catalogue.c in X.Org libXfont 1.3.1 allows remote attackers to have unspecified impact.

  • EPSS 4.92%
  • Veröffentlicht 20.03.2015 14:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly perform type conversion for metrics values, which allows remote authenticated users to cause a denial of service (out-of-bounds...

  • EPSS 4.86%
  • Veröffentlicht 20.03.2015 14:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly handle character bitmaps it cannot read, which allows remote authenticated users to cause a denial of service (NULL pointer der...

  • EPSS 4.86%
  • Veröffentlicht 20.03.2015 14:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The bdfReadProperties function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 allows remote authenticated users to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a (1) negat...

  • EPSS 0.44%
  • Veröffentlicht 15.05.2014 14:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file ...

  • EPSS 4.36%
  • Veröffentlicht 15.05.2014 14:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, ...

  • EPSS 4.36%
  • Veröffentlicht 15.05.2014 14:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, wh...