X.Org LibXFont 1.4.6
Approved changes feed: RSS · Atom
cpe:2.3:a:x:libxfont:1.4.6:*:*:*:*:*:*:*
part: a version: 1.4.6 update: *
| Vendor | X (a2acdb6f-4f26-543b-8294-d5d6397c9211) |
|---|---|
| Product | Libxfont (67462931-b5b2-55f6-9260-18cb2182eec6) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/libxfont |
purl2cpe | 2026-06-01 10:12:31.286730 |
pkg:deb/ubuntu/libxfont |
purl2cpe | 2026-06-01 10:12:31.286732 |
pkg:github/freedesktop/libxfont |
purl2cpe | 2026-06-01 10:12:31.286733 |
pkg:github/freedesktop/xorg-libxfont |
purl2cpe | 2026-06-01 10:12:31.286734 |
pkg:github/val-verde/libxfont |
purl2cpe | 2026-06-01 10:12:31.286736 |
pkg:rpm/centos/libxfont |
purl2cpe | 2026-06-01 10:12:31.286737 |
pkg:rpm/fedora/libxfont |
purl2cpe | 2026-06-01 10:12:31.286738 |
pkg:rpm/opensuse/libxfont |
purl2cpe | 2026-06-01 10:12:31.286739 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2014-0211 |
vulnerable | 2026-06-03 14:33:37.549594 |
Details available
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.
Published: 2014-05-15T14:00:00.000Z
Updated: 2024-08-06T09:05:39.379Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-0210 |
vulnerable | 2026-06-03 14:33:37.548452 |
Details available
Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, (4) fs_read_extent_info, (5) fs_read_glyphs, (6) fs_read_list, or (7) fs_read_list_info function.
Published: 2014-05-15T14:00:00.000Z
Updated: 2024-08-06T09:05:39.283Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-0209 |
vulnerable | 2026-06-03 14:33:37.546323 |
Details available
Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which triggers a heap-based buffer overflow, related to metadata.
Published: 2014-05-15T14:00:00.000Z
Updated: 2024-08-06T09:05:39.253Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-6462 |
vulnerable | 2026-06-03 14:33:26.498780 |
Details available
Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in a character name in a BDF font file.
Published: 2014-01-09T15:00:00.000Z
Updated: 2024-08-06T17:39:01.320Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.