CVE-2014-0209

Published: May 15, 2014Modified: May 6, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which triggers a heap-based buffer overflow, related to metadata.

Affected (26)

Products: X: Libxfont · Canonical: Ubuntu Linux

1 product

1 product

Configuration A

21 vulnerable

Vulnerable Software	Affected Versions
X Libxfont	Up to 1.4.7
X Libxfont	Version 1.2.3
X Libxfont	Version 1.2.4
X Libxfont	Version 1.2.5
X Libxfont	Version 1.2.6
X Libxfont	Version 1.2.7
X Libxfont	Version 1.2.8
X Libxfont	Version 1.2.9
X Libxfont	Version 1.3.0
X Libxfont	Version 1.3.1
X Libxfont	Version 1.3.2
X Libxfont	Version 1.3.3
X Libxfont	Version 1.3.4
X Libxfont	Version 1.4.0
X Libxfont	Version 1.4.1
X Libxfont	Version 1.4.2
X Libxfont	Version 1.4.3
X Libxfont	Version 1.4.4
X Libxfont	Version 1.4.5
X Libxfont	Version 1.4.6
X Libxfont	Version 1.4.99

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 10.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 12.10
Canonical Ubuntu Linux	Version 13.10
Canonical Ubuntu Linux	Version 14.04

Related CWEs

References (26)

http://advisories.mageia.org/MGASA-2014-0278.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

Source: secalert@redhat.com

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

Source: secalert@redhat.com

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2014-1893.html

Source: secalert@redhat.com

http://seclists.org/fulldisclosure/2014/Dec/23

Source: secalert@redhat.com

http://secunia.com/advisories/59154

Source: secalert@redhat.com

http://www.debian.org/security/2014/dsa-2927

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

Source: secalert@redhat.com

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/67382

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2211-1

Source: secalert@redhat.com

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: secalert@redhat.com

http://advisories.mageia.org/MGASA-2014-0278.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2014-1893.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2014/Dec/23

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/59154

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2014/dsa-2927

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/67382

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2211-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.