Total vulnerabilities in the database
Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, (4) fs_read_extent_info, (5) fs_read_glyphs, (6) fs_read_list, or (7) fs_read_list_info function.
| Software | From | Fixed in |
|---|---|---|
| x / libxfont | - | 1.4.7.x |
| x / libxfont | 1.4.4 | 1.4.4.x |
| x / libxfont | 1.2.7 | 1.2.7.x |
| x / libxfont | 1.2.6 | 1.2.6.x |
| x / libxfont | 1.3.3 | 1.3.3.x |
| x / libxfont | 1.3.2 | 1.3.2.x |
| x / libxfont | 1.3.4 | 1.3.4.x |
| x / libxfont | 1.3.1 | 1.3.1.x |
| x / libxfont | 1.4.0 | 1.4.0.x |
| x / libxfont | 1.2.4 | 1.2.4.x |
| x / libxfont | 1.4.99 | 1.4.99.x |
| x / libxfont | 1.2.9 | 1.2.9.x |
| x / libxfont | 1.4.1 | 1.4.1.x |
| x / libxfont | 1.4.6 | 1.4.6.x |
| x / libxfont | 1.2.3 | 1.2.3.x |
| x / libxfont | 1.2.5 | 1.2.5.x |
| x / libxfont | 1.2.8 | 1.2.8.x |
| x / libxfont | 1.4.5 | 1.4.5.x |
| x / libxfont | 1.3.0 | 1.3.0.x |
| x / libxfont | 1.4.2 | 1.4.2.x |
| x / libxfont | 1.4.3 | 1.4.3.x |
| canonical / ubuntu_linux | 13.10 | 13.10.x |
| canonical / ubuntu_linux | 12.10 | 12.10.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |
| canonical / ubuntu_linux | 12.04 | 12.04.x |
| canonical / ubuntu_linux | 10.04 | 10.04.x |