Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 3 of 3 results

CVE-2017-16611

Medium priority
Fixed

In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.

3 affected packages

libxfont, libxfont1, libxfont2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libxfont Fixed
libxfont1 Not in release
libxfont2 Fixed
Show less packages

CVE-2017-13722

Medium priority
Fixed

In the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2 and 2.x before 2.0.2, a missing boundary check (for PCF files) could be used by local attackers authenticated to an Xserver for a buffer over-read, for...

3 affected packages

libxfont, libxfont1, libxfont2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libxfont Fixed
libxfont1 Not in release
libxfont2 Fixed
Show less packages

CVE-2017-13720

Low priority
Fixed

In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information...

3 affected packages

libxfont, libxfont1, libxfont2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libxfont Fixed
libxfont1 Not in release
libxfont2 Fixed
Show less packages