532 matches found
CVE-2007-1351
CVE-2007-1351 is an integer overflow in the FreeType/bdf loader path: bdfReadCharacters in bdfread.c causes a heap overflow when parsing crafted BDF fonts. Affected products include X.Org libXfont before 20070403 and FreeType 2.3.2 and earlier. Exploitation could lead to remote code execution on ...
Multiple font integer overflows (CVE-2007-1352)
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow...
Fedora Core 5 : libXfont-1.0.0-3 (2006-912)
Mon Aug 14 2006 Soren Sandmann - 1.0.0-3 - fdo-7535.patch Fix for FDO bug 7535, CVE-2006-3467, RH bug 202475 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...
Mandrake Linux Security Advisory : xorg-x11 (MDKSA-2006:164-1)
Local exploitation of an integer overflow vulnerability in the 'CIDAFM' function in the X.Org and XFree86 X server could allow an attacker to execute arbitrary code with privileges of the X server, typically root CVE-2006-3739. Local exploitation of an integer overflow vulnerability in the...
X.Org LibXfont CID字体文件多个整数溢出漏洞
X.Org是X.Org Foundation对X窗口系统的开源实现。 X.Org和XFree86 X server在解析type1模块中的CID编码的Type1字体时缺少验证,远程攻击者可能利用此漏洞在用户机器上执行任意指令。 具体来讲,scancidfont函数在处理CMap和CIDFont字体数据时存在整数溢出漏洞;CIDAFM函数在处理AFM(Adobe Font Metrics)文件时也存在整数溢出漏洞。攻击者可以利用这些漏洞以root权限执行任意指令。 RedHat Linux WS 4 RedHat Linux ES 4 RedHat Linux Desktop 4 RedH...
DSA-1193-1 xfree86
Bulletin has no description...
GLSA-200609-07 : LibXfont, monolithic X.org: Multiple integer overflows
The remote host is affected by the vulnerability described in GLSA-200609-07 LibXfont, monolithic X.org: Multiple integer overflows Several integer overflows have been found in the CID font parser. Impact : A remote attacker could exploit this vulnerability by enticing a user to load a malicious...
GLSA-200609-04 : LibXfont: Multiple integer overflows
The remote host is affected by the vulnerability described in GLSA-200609-04 LibXfont: Multiple integer overflows Several integer overflows have been found in the PCF font parser. Impact : A local attacker could possibly execute arbitrary code or crash the Xserver by enticing a user to load a...
USN-341-1: libxfont vulnerability
An integer overflow has been discovered in X.org's font handling library. By using a specially crafted font file, this could be exploited to crash the X server or execute arbitrary code with root privileges...
LibXfont: Multiple integer overflows
Background libXfont is the X.Org Xfont library, some parts are based on the FreeType code base. Description Several integer overflows have been found in the PCF font parser. Impact A local attacker could possibly execute arbitrary code or crash the Xserver by enticing a user to load a specially...
X Window 4.0/4.1/4.2 - System Oversized Font Denial of Service
source: https://www.securityfocus.com/bid/4966/info X Window System behaves unpredictably when handling an overly large font size. If an attacker can pass an overly large font size to X Window System, it is possible to cause a denial of service condition. Remote exploitation of this issue is...
PT-2006-7608 · Freetype +2 · Freetype +2
Name of the Vulnerable Software and Affected Versions: libXfont versions prior to 1.2.0 freetype2-64bit affected versions not specified freetype2-devel-64bit affected versions not specified freetype2-x86 affected versions not specified FreeType versions prior to 2.2 Description: The issue is...