Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2003-0581HistoryAug 18, 2003 - 4:00 a.m.
CVE-2003-0581
2003-08-1804:00:00
Debian Security Bug Tracker
security-tracker.debian.org
8
0.008 Low
EPSS
Percentile
81.9%
X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and possibly other types of packets, with a large num_ranges value, which causes an out-of-bounds array access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | xfstt | < 1.5-1 | xfstt_1.5-1_all.deb |
| Debian | 10 | all | xfstt | < 1.5-1 | xfstt_1.5-1_all.deb |
Related
cve
cve
CVE-2003-0581
2003-08-18 04:00:00
ubuntucve
ubuntucve
CVE-2003-0581
2003-08-18 00:00:00
nessus
nessus
TrueType Font Server for X11 (xfstt) Malformed Packet Remote Overflow
2003-08-01 00:00:00
Debian DSA-360-1 : xfstt - several vulnerabilities
2004-09-29 00:00:00
osv
osv
xfstt - several vulnerabilities
2003-08-01 00:00:00
openvas
openvas
Debian Security Advisory DSA 360-1 (xfstt)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-360)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA-360-1] New xfstt packages fix several vulnerabilities
2003-08-01 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA-360-1] New xfstt packages fix several vulnerabilities
2003-08-04 00:00:00