Privilege Escalation

libXfont.so is vulnerable to privilege escalation. An integer overflow bug in FontFileAddEntry and lexAlias allows a local attacker to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which results in a heap-based buffer overflow...

Remote Code Execution (RCE)

libXfont.so is vulnerable to remote code execution. An buffer overflows in the functions fsrecvconnsetup, fsreadopenfont, fsreadqueryinfo, fsreadextentinfo, fsreadglyphs, fsreadlist and fsreadlistinfo function allows a remote attacker to execute commands via a crafted xfs protocol reply...

Remote Code Execution (RCE)

libXfont.so is vulnerable to remote code execution. An integer overflow bug in the functions fsgetreply, fsallocglyphs and fsreadextentinfo allows a remote attacker to execute commands via a crafted xfs reply that triggers a buffer overflow...

Denial Of Service (DoS)

libXfont.so is vulnerable to denial of service DoS attack. The PatternMatch function in fontfile/fontdir.c does not handle the case when a pattern contains the ? character, skipping characters characters such as the NULL character or \0 in the string and eventually crashing when invalid memory is...