[Bug 1203715] CVE-2015-1802 libXfont: missing range check in bdfReadProperties
bugzilla at redhat.com
bugzilla at redhat.com
Thu Apr 9 10:23:24 UTC 2015
https://bugzilla.redhat.com/show_bug.cgi?id=1203715
Stefan Cornelius <scorneli at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Whiteboard|impact=moderate,public=2015 |impact=important,public=201
|0317,reported=20150318,sour |50317,reported=20150318,sou
|ce=internet,cvss2=4.4/AV:L/ |rce=internet,cvss2=4.4/AV:L
|AC:M/Au:N/C:P/I:P/A:P,rhel- |/AC:M/Au:N/C:P/I:P/A:P,rhel
|5/libXfont=affected,rhel-6/ |-5/libXfont=affected,rhel-6
|libXfont=affected,rhel-7/li |/libXfont=affected,rhel-7/l
|bXfont=affected,fedora-all/ |ibXfont=affected,fedora-all
|libXfont=affected |/libXfont=affected
--- Doc Text *updated* ---
An integer overflow flaw was found in the way libXfont processed certain Glyph Bitmap Distribution Format (BDF) fonts. A malicious, local user could exploit this issue to crash the X.Org server or potentially execute arbitrary code with the privileges of the X.Org server.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=pXXGQD6nSN&a=cc_unsubscribe
More information about the fonts-bugs
mailing list