Описание
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:1.4.7-1 |
| esm-infra-legacy/trusty | not-affected | 1:1.4.7-1 |
| lucid | released | 1:1.4.1-1ubuntu0.3 |
| precise | released | 1:1.4.4-1ubuntu0.2 |
| quantal | released | 1:1.4.5-2ubuntu0.12.10.2 |
| saucy | released | 1:1.4.6-1ubuntu0.2 |
| trusty | not-affected | 1:1.4.7-1 |
| trusty/esm | not-affected | 1:1.4.7-1 |
| upstream | released | 1.4.8 |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyph ...
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.
EPSS
7.5 High
CVSS2