Lucene search
+L

91 matches found

redhat
redhat
added 4 days ago6 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
fedora
fedora
added 5 days ago9 views

[SECURITY] Fedora 43 Update: libXfont2-2.0.8-1.fc43

X.Org X11 libXfont2 runtime library...

8.8CVSS6.1AI score0.00643EPSS
Exploits0
fedora
fedora
added 2026/07/10 12:54 a.m.7 views

[SECURITY] Fedora 44 Update: libXfont2-2.0.8-1.fc44

X.Org X11 libXfont2 runtime library...

8.8CVSS5.9AI score0.00643EPSS
Exploits0
mscve
mscve
added 2026/07/09 8:2 a.m.4 views

libXfont2 PCF Font Parsing Heap Buffer Overflow

...

8.8CVSS6.1AI score0.00586EPSS
Exploits0
osv
osv
added 2026/07/09 12:0 a.m.4 views

OPENSUSE-SU-2026:11233-1 libXfont2-2-2.0.7-2.1 on GA media

These are all security issues fixed in the libXfont2-2-2.0.7-2.1 package on the GA media of openSUSE Tumbleweed...

8.8CVSS6.1AI score0.00643EPSS
Exploits0References3
nessus
nessus
added 2026/07/09 12:0 a.m.9 views

Slackware Linux 15.0 / current libXfont2 Multiple Vulnerabilities (SSA:2026-189-01)

The version of libXfont2 installed on the remote host is prior to 2.0.8. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-189-01 advisory. New libXfont2 packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the...

8.8CVSS6.1AI score0.00643EPSS
Exploits0References4
nessus
nessus
added 2026/07/09 12:0 a.m.5 views

FreeBSD : libXfont2 -- Multiple vulnerabilities (9a1fdf39-7b10-11f1-a315-589cfc10a551)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 9a1fdf39-7b10-11f1-a315-589cfc10a551 advisory. X.Org project reports: Multiple issues have been found in the libXfont2 library published by...

8.8CVSS6.1AI score0.00643EPSS
Exploits0References5
slackware
slackware
added 2026/07/08 9:55 p.m.4 views

[slackware-security] libXfont2

New libXfont2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libXfont2-2.0.8-i586-1slack15.0.txz: Upgraded. This update fixes security issues: BitmapScaleBitmaps Integer Overflow Heap Buffer...

8.8CVSS5.9AI score0.00643EPSS
Exploits0
redhatcve
redhatcve
added 2026/07/08 7:1 p.m.4 views

CVE-2026-56001

A flaw was found in libXfont2. In the BitmapScaleBitmaps function, an integer overflow can occur when calculating the memory needed for font glyphs. This overflow leads to a heap buffer overflow, where a smaller-than-required memory buffer is allocated. A local attacker can exploit this by loadin...

8.8CVSS6.6AI score0.0038EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/07/08 7:1 p.m.4 views

CVE-2026-56002

A flaw was found in libXfont2. A specially crafted PCF Portable Compiled Format font file, when processed by libXfont2, can lead to a buffer overflow. This occurs because the font parsing process does not properly validate the size of a bitmap buffer against the glyph metrics provided in the...

8.8CVSS6.9AI score0.00586EPSS
Exploits0References3
redhat
redhat
added 2026/07/08 4:29 p.m.4 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
redhat
redhat
added 2026/07/08 4:22 p.m.10 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
redhat
redhat
added 2026/07/08 4:16 p.m.4 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
redhat
redhat
added 2026/07/08 2:38 p.m.5 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
nvd
nvd
added 2026/07/08 10:16 a.m.9 views

CVE-2026-56003

A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the X server...

8.8CVSS0.00643EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 10:16 a.m.9 views

CVE-2026-56002

A heap bufferflow in pcfReadFont due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server...

8.8CVSS0.00586EPSS
Exploits0References2
redhat
redhat
added 2026/07/08 9:46 a.m.8 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
redhat
redhat
added 2026/07/08 9:30 a.m.6 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
cvelist
cvelist
added 2026/07/08 9:25 a.m.38 views

CVE-2026-56003 libXfont2 computeProps Property Buffer Heap Buffer Overflow

A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the X server...

8.5CVSS0.00643EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/07/08 9:25 a.m.8 views

CVE-2026-56003

A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the X server...

8.5CVSS6.3AI score0.00643EPSS
Exploits0References3
Rows per page
Query Builder