CVE-2014-0211

Published: May 15, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.

Affected (26)

Products: Canonical: Ubuntu Linux · X: Libxfont

1 product

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 10.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 12.10
Canonical Ubuntu Linux	Version 13.10
Canonical Ubuntu Linux	Version 14.04

Configuration B

21 vulnerable

Vulnerable Software	Affected Versions
X Libxfont	Up to 1.4.7
X Libxfont	Version 1.2.3
X Libxfont	Version 1.2.4
X Libxfont	Version 1.2.5
X Libxfont	Version 1.2.6
X Libxfont	Version 1.2.7
X Libxfont	Version 1.2.8
X Libxfont	Version 1.2.9
X Libxfont	Version 1.3.0
X Libxfont	Version 1.3.1
X Libxfont	Version 1.3.2
X Libxfont	Version 1.3.3
X Libxfont	Version 1.3.4
X Libxfont	Version 1.4.0
X Libxfont	Version 1.4.1
X Libxfont	Version 1.4.2
X Libxfont	Version 1.4.3
X Libxfont	Version 1.4.4
X Libxfont	Version 1.4.5
X Libxfont	Version 1.4.6
X Libxfont	Version 1.4.99

Related CWEs

References (26)

http://advisories.mageia.org/MGASA-2014-0278.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

Source: secalert@redhat.com

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

Source: secalert@redhat.com

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2014-1893.html

Source: secalert@redhat.com

http://seclists.org/fulldisclosure/2014/Dec/23

Source: secalert@redhat.com

http://secunia.com/advisories/59154

Source: secalert@redhat.com

http://www.debian.org/security/2014/dsa-2927

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

Source: secalert@redhat.com

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/67382

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2211-1

Source: secalert@redhat.com

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: secalert@redhat.com

http://advisories.mageia.org/MGASA-2014-0278.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2014-1893.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2014/Dec/23

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/59154

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2014/dsa-2927

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/67382

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2211-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.