X.Org LibXFont 1.4.99

CPE Details

X.Org LibXFont 1.4.99
x
libxfont
1.4.99
2014-05-16
11h24 +00:00
2014-05-21
22h06 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:x:libxfont:1.4.99:*:*:*:*:*:*:*

Informations

Vendor

x

Product

libxfont

Version

1.4.99

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-16611 2017-12-01 16h00 +00:00 In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.
5.5
Medium
CVE-2014-0209 2014-05-15 12h00 +00:00 Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which triggers a heap-based buffer overflow, related to metadata.
4.6
CVE-2014-0210 2014-05-15 12h00 +00:00 Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, (4) fs_read_extent_info, (5) fs_read_glyphs, (6) fs_read_list, or (7) fs_read_list_info function.
7.5
CVE-2014-0211 2014-05-15 12h00 +00:00 Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.
7.5