CVE-2015-1804 — Incorrect Type Conversion or Cast in Libxfont

CWE-189 CWE-704 — Incorrect Type Conversion or Cast CWE-681 — Incorrect Conversion between Numeric Types CWE-805 — Buffer Access with Incorrect Length Value9 documents8 sources

Severity

8.5HIGHNVD

EPSS

2.3%

top 15.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

X.org Libxfont X Libxfont

Timeline

PublishedMar 20

Latest updateMay 17

Description

The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly perform type conversion for metrics values, which allows remote authenticated users to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via a crafted BDF font file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 6.8 | Impact: 10.0

Affected Packages2 packages

▶Debianx.org/libxfont< 1:1.5.1-1+3

▶NVDx/libxfont1.4.8+1

🔴Vulnerability Details

GHSA

GHSA-78q2-gpgm-j9wf: The bdfReadCharacters function in bitmap/bdfread↗2022-05-17

▶

CVEList

CVE-2015-1804: The bdfReadCharacters function in bitmap/bdfread↗2015-03-20

▶

OSV

CVE-2015-1804: The bdfReadCharacters function in bitmap/bdfread↗2015-03-20

▶

📋Vendor Advisories

Ubuntu

libXfont vulnerabilities↗2015-03-18

▶

Red Hat

libXfont: out-of-bounds memory access in bdfReadCharacters↗2015-03-17

▶

Debian

CVE-2015-1804: libxfont - The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4....↗2015

▶

💬Community

Bugzilla

CVE-2015-1804 CVE-2015-1802 CVE-2015-1803 libXfont: various flaws [fedora-all]↗2015-03-19

▶

Bugzilla

CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters↗2015-03-19

▶