Information on source package libxfont

Available versions

ReleaseVersion
wheezy1:1.4.5-5
wheezy (security)1:1.4.5-5+deb7u1
jessie (security)1:1.5.1-1+deb8u1
stretch (security)1:2.0.1-3+deb9u1
buster1:2.0.1-4
sid1:2.0.1-4

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-16611vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker ...

Resolved issues

BugDescription
CVE-2017-13722In the pcfGetProperties function in bitmap/pcfread.c in libXfont ...
CVE-2017-13720In the PatternMatch function in fontfile/fontdir.c in libXfont through ...
CVE-2015-1804The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont ...
CVE-2015-1803The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont ...
CVE-2015-1802The bdfReadProperties function in bitmap/bdfread.c in X.Org libXfont ...
CVE-2014-0211Multiple integer overflows in the (1) fs_get_reply, (2) ...
CVE-2014-0210Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x ...
CVE-2014-0209Multiple integer overflows in the (1) FontFileAddEntry and (2) ...
CVE-2013-6462Stack-based buffer overflow in the bdfReadCharacters function in ...
CVE-2011-2895The LZW decompressor in (1) the BufCompressedFill function in ...
CVE-2008-0006Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont ...
CVE-2007-5199A single byte overflow in catalogue.c in X.Org libXfont 1.3.1 allows ...
CVE-2007-1352Integer overflow in the FontFileInitTable function in X.Org libXfont ...
CVE-2007-1351Integer overflow in the bdfReadCharacters function in bdfread.c in (1) ...
CVE-2006-3740Integer overflow in the scan_cidfont function in X.Org 6.8.2 and ...
CVE-2006-3739Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X ...
CVE-2006-3467Integer overflow in FreeType before 2.2 allows remote attackers to ...

Security announcements

DSA / DLADescription
DSA-3995-1libxfont - security update
DSA-3995-1libxfont - security update
DLA-1126-1libxfont - security update
DLA-183-1libxfont - security update
DSA-3194-1libxfont - security update
DSA-2927-1libxfont - security update
DSA-2927-1libxfont - security update
DSA-2838-1libxfont - buffer overflow
DSA-2838-1libxfont - buffer overflow
DSA-2293-1libxfont - buffer overflow
DSA-2293-1libxfont - buffer overflow

Search for package or bug name: Reporting problems