Download
| Alert*
oval:org.secpod.oval:def:89043734
This update for libXfont fixes several issues. These security issues were fixed: - CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information - Prevent the X server from accessing arbitrary fil ... oval:org.secpod.oval:def:70596 Two vulnerabilities were found in libXfont, the X11 font rasterisation library, which could result in denial of service or memory disclosure. oval:org.secpod.oval:def:89043538 This update for xorg-x11-libs fixes several issues. These security issues were fixed: - CVE-2017-16612: Heap overflows due to an integer overflow while parsing images and a signedness issue while parsing comments . - CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid read ... oval:org.secpod.oval:def:703840 libxfont: X11 font rasterisation library - libxfont1: X11 font rasterisation library - libxfont2: X11 font rasterisation library Several security issues were fixed in libXfont. oval:org.secpod.oval:def:603128 Two vulnerabilities were found in libXfont, the X11 font rasterisation library, which could result in denial of service or memory disclosure. oval:org.secpod.oval:def:113349 X.Org X11 libXfont runtime library oval:org.secpod.oval:def:113598 X.Org X11 libXfont runtime library oval:org.secpod.oval:def:113351 X.Org X11 libXfont runtime library oval:org.secpod.oval:def:51911 libxfont: X11 font rasterisation library - libxfont1: X11 font rasterisation library - libxfont2: X11 font rasterisation library Several security issues were fixed in libXfont. oval:org.secpod.oval:def:2000248 In the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2 and 2.x before 2.0.2, a missing boundary check could be used by local attackers authenticated to an Xserver for a buffer over-read, for information disclosure or a crash of the X server. |