2 matches found
libxfont Denial of Service Vulnerability
libXfont is an X font processing library for servers and utilities from the X.Org Foundation. A denial of service vulnerability exists in the 'PatternMatch' function of the fontfile/fontdir.c file in libXfont versions 1.5.2 and earlier and version 2.x before 2.0.2. An attacker can exploit this...
CVE-2017-13720
In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information disclosure or a crash denial of service. This occurs because '\0'...