CVE-2014-0209

Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which triggers a heap-based buffer overflow, related to metadata.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:x:libxfont:*:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.2.9:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:x:libxfont:1.4.99:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

History

21 Nov 2024, 02:01

Type Values Removed Values Added
References () http://advisories.mageia.org/MGASA-2014-0278.html - () http://advisories.mageia.org/MGASA-2014-0278.html -
References () http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html - () http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html -
References () http://lists.x.org/archives/xorg-announce/2014-May/002431.html - Vendor Advisory () http://lists.x.org/archives/xorg-announce/2014-May/002431.html - Vendor Advisory
References () http://rhn.redhat.com/errata/RHSA-2014-1893.html - () http://rhn.redhat.com/errata/RHSA-2014-1893.html -
References () http://seclists.org/fulldisclosure/2014/Dec/23 - () http://seclists.org/fulldisclosure/2014/Dec/23 -
References () http://secunia.com/advisories/59154 - () http://secunia.com/advisories/59154 -
References () http://www.debian.org/security/2014/dsa-2927 - () http://www.debian.org/security/2014/dsa-2927 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2015:145 - () http://www.mandriva.com/security/advisories?name=MDVSA-2015:145 -
References () http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html - () http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html -
References () http://www.securityfocus.com/archive/1/534161/100/0/threaded - () http://www.securityfocus.com/archive/1/534161/100/0/threaded -
References () http://www.securityfocus.com/bid/67382 - () http://www.securityfocus.com/bid/67382 -
References () http://www.ubuntu.com/usn/USN-2211-1 - () http://www.ubuntu.com/usn/USN-2211-1 -
References () http://www.vmware.com/security/advisories/VMSA-2014-0012.html - () http://www.vmware.com/security/advisories/VMSA-2014-0012.html -

Information

Published : 2014-05-15 14:55

Updated : 2024-11-21 02:01


NVD link : CVE-2014-0209

Mitre link : CVE-2014-0209

CVE.ORG link : CVE-2014-0209


JSON object : View

Products Affected

x

  • libxfont

canonical

  • ubuntu_linux
CWE
CWE-189

Numeric Errors