SUSE-SU-2018:0334-1 -- SLES libXfont-debugsource, libXfont1ID: oval:org.secpod.oval:def:89043734 | Date: (C)2021-03-05 (M)2022-08-31 |
Class: PATCH | Family: unix |
This update for libXfont fixes several issues. These security issues were fixed: - CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information - Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
libXfont-debugsource |
libXfont1 |