6 matches found
EUVD-2017-5239
Malware in sbrugna...
SUSE-SU-2018:0334-1 Security update for libXfont
This update for libXfont fixes several issues. These security issues were fixed: - CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads bsc1054285 - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information bsc1049692 - Prevent the X server from...
MGASA-2017-0373 Updated libxfont packages fix security vulnerabilities
In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information disclosure or a crash denial of service. This occurs because '\0'...
Updated libxfont package fixes security vulnerabilities
The bdf parser reads a count for the number of properties defined in a font from the font file, and allocates arrays with entries for each property based on that count. It never checked to see if that count was negative, or large enough to overflow when multiplied by the size of the structures...
MGASA-2015-0113 Updated libxfont package fixes security vulnerabilities
The bdf parser reads a count for the number of properties defined in a font from the font file, and allocates arrays with entries for each property based on that count. It never checked to see if that count was negative, or large enough to overflow when multiplied by the size of the structures...
libXfont multiple security vulnerabilities
Memory corruptions on bdf parsing...