CVE-2015-1802 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Libxfont

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-190 — Integer Overflow or Wraparound CWE-122 — Heap-based Buffer Overflow CWE-131 — Incorrect Calculation of Buffer Size9 documents8 sources

Severity

8.5HIGHNVD

EPSS

1.8%

top 17.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

X.org Libxfont X Libxfont

Timeline

PublishedMar 20

Latest updateMay 17

Description

The bdfReadProperties function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 allows remote authenticated users to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a (1) negative or (2) large property count in a BDF font file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 6.8 | Impact: 10.0

Affected Packages2 packages

▶Debianx.org/libxfont< 1:1.5.1-1+3

▶NVDx/libxfont1.4.8+1

🔴Vulnerability Details

GHSA

GHSA-f3m3-9rj4-h5hq: The bdfReadProperties function in bitmap/bdfread↗2022-05-17

▶

CVEList

CVE-2015-1802: The bdfReadProperties function in bitmap/bdfread↗2015-03-20

▶

OSV

CVE-2015-1802: The bdfReadProperties function in bitmap/bdfread↗2015-03-20

▶

📋Vendor Advisories

Ubuntu

libXfont vulnerabilities↗2015-03-18

▶

Red Hat

libXfont: missing range check in bdfReadProperties↗2015-03-17

▶

Debian

CVE-2015-1802: libxfont - The bdfReadProperties function in bitmap/bdfread.c in X.Org libXfont before 1.4....↗2015

▶

💬Community

Bugzilla

CVE-2015-1802 libXfont: missing range check in bdfReadProperties↗2015-03-19

▶

Bugzilla

CVE-2015-1804 CVE-2015-1802 CVE-2015-1803 libXfont: various flaws [fedora-all]↗2015-03-19

▶