CVE-2014-0210

Published: May 15, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, (4) fs_read_extent_info, (5) fs_read_glyphs, (6) fs_read_list, or (7) fs_read_list_info function.

Affected (26)

Products: X: Libxfont · Canonical: Ubuntu Linux

1 product

1 product

Configuration A

21 vulnerable

Vulnerable Software	Affected Versions
X Libxfont	Up to 1.4.7
X Libxfont	Version 1.2.3
X Libxfont	Version 1.2.4
X Libxfont	Version 1.2.5
X Libxfont	Version 1.2.6
X Libxfont	Version 1.2.7
X Libxfont	Version 1.2.8
X Libxfont	Version 1.2.9
X Libxfont	Version 1.3.0
X Libxfont	Version 1.3.1
X Libxfont	Version 1.3.2
X Libxfont	Version 1.3.3
X Libxfont	Version 1.3.4
X Libxfont	Version 1.4.0
X Libxfont	Version 1.4.1
X Libxfont	Version 1.4.2
X Libxfont	Version 1.4.3
X Libxfont	Version 1.4.4
X Libxfont	Version 1.4.5
X Libxfont	Version 1.4.6
X Libxfont	Version 1.4.99

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 10.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 12.10
Canonical Ubuntu Linux	Version 13.10
Canonical Ubuntu Linux	Version 14.04

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (26)

http://advisories.mageia.org/MGASA-2014-0278.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

Source: secalert@redhat.com

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

Source: secalert@redhat.com

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2014-1893.html

Source: secalert@redhat.com

http://seclists.org/fulldisclosure/2014/Dec/23

Source: secalert@redhat.com

http://secunia.com/advisories/59154

Source: secalert@redhat.com

http://www.debian.org/security/2014/dsa-2927

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

Source: secalert@redhat.com

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/67382

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2211-1

Source: secalert@redhat.com

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: secalert@redhat.com

http://advisories.mageia.org/MGASA-2014-0278.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2014-1893.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2014/Dec/23

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/59154

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2014/dsa-2927

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/67382

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2211-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.