Search CVE reports
1 – 3 of 3 results
CVE-2017-16611
Medium priorityIn libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.
3 affected packages
libxfont, libxfont1, libxfont2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libxfont | — | — | — | — | Fixed |
| libxfont1 | — | — | — | — | Not in release |
| libxfont2 | — | — | — | — | Fixed |
CVE-2017-13722
Medium priorityIn the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2 and 2.x before 2.0.2, a missing boundary check (for PCF files) could be used by local attackers authenticated to an Xserver for a buffer over-read, for...
3 affected packages
libxfont, libxfont1, libxfont2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libxfont | — | — | — | — | Fixed |
| libxfont1 | — | — | — | — | Not in release |
| libxfont2 | — | — | — | — | Fixed |
CVE-2017-13720
Low priorityIn the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information...
3 affected packages
libxfont, libxfont1, libxfont2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libxfont | — | — | — | — | Fixed |
| libxfont1 | — | — | — | — | Not in release |
| libxfont2 | — | — | — | — | Fixed |