CVE-2007-5199Improper Restriction of Operations within the Bounds of a Memory Buffer in Libxfont

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-193Off-by-one Error7 documents7 sources
Severity
9.8CRITICALNVD
EPSS
0.5%
top 33.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
X.org LibxfontX Libxfont
Timeline
PublishedAug 18
Latest updateMay 1

Description

A single byte overflow in catalogue.c in X.Org libXfont 1.3.1 allows remote attackers to have unspecified impact.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

Debianx.org/libxfont< 1:1.3.2-1+3
NVDx/libxfont1.3.1

🔴Vulnerability Details

3
GHSA
GHSA-c8m3-98wf-r685: A single byte overflow in catalogue2022-05-01
CVEList
CVE-2007-5199: A single byte overflow in catalogue2017-08-18
OSV
CVE-2007-5199: A single byte overflow in catalogue2017-08-18

📋Vendor Advisories

2
Red Hat
libxfont: single byte overflow in catalogue.c2007-09-28
Debian
CVE-2007-5199: libxfont - A single byte overflow in catalogue.c in X.Org libXfont 1.3.1 allows remote atta...2007

💬Community

1
Bugzilla
CVE-2007-5199 libxfont: single byte overflow in catalogue.c2017-08-22