[Bug 1203719] New: CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters - fonts-bugs - Fedora Mailing-Lists

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

[Bug 1203719] New: CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

Broken dependencies:...

[Bug 1203715] New: CVE-2015-1802...

Red Hat Bugzilla

Thursday, 19 March 2015 Thu, 19 Mar '15

9:14 a.m.

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Bug ID: 1203719 Summary: CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: mprpic(a)redhat.com CC: btissoir(a)redhat.com, fonts-bugs(a)lists.fedoraproject.org, sandmann(a)redhat.com The bdf parser read metrics values as 32-bit integers, but stored them into 16-bit integers. Overflows could occur in various operations leading to out-of-bounds memory access. A local user could exploit this issue to potentially execute arbitrary code with the privileges of the X.Org server. Upstream advisory: http://seclists.org/oss-sec/2015/q1/865 Upstream patch: http://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=2351c83a77a478b4... -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=er2MnEzbkS&a=cc_unsubscribe

Reply

Show replies by date

Red Hat Bugzilla

Thursday, 19 March Thu, 19 Mar

9:15 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Martin Prpic <mprpic(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1203720 Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1203720 [Bug 1203720] CVE-2015-1802 CVE-2015-1803 libXfont: various flaws [fedora-all] -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=S9x42iRP28&a=cc_unsubscribe

Reply

Red Hat Bugzilla

9:15 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 --- Comment #1 from Martin Prpic <mprpic(a)redhat.com> --- Created libXfont tracking bugs for this issue: Affects: fedora-all [bug 1203720] -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=8synfSNzBe&a=cc_unsubscribe

Reply

Red Hat Bugzilla

9:17 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Martin Prpic <mprpic(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1203722 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=YgpVl1DAJL&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Monday, 23 March Mon, 23 Mar

2:17 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Bug 1203719 depends on bug 1203720, which changed state. Bug 1203720 Summary: CVE-2015-1804 CVE-2015-1802 CVE-2015-1803 libXfont: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1203720 What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Resolution|--- |ERRATA -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=s2PuZS31mz&a=cc_unsubscribe

Reply

Red Hat Bugzilla

2:17 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 --- Comment #2 from Fedora Update System <updates(a)fedoraproject.org> --- libXfont-1.5.1-1.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=9xfnDSq0sd&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Tuesday, 31 March Tue, 31 Mar

1:54 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|medium |high Severity|medium |high -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=zarqgVe78T&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Saturday, 4 April Sat, 4 Apr

9:15 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Taylor Frazier <tfrazier(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |tfrazier(a)redhat.com -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=c03Ywy2Ddy&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Thursday, 9 April Thu, 9 Apr

5:26 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=moderate,public=2015 |impact=important,public=201 |0317,reported=20150318,sour |50317,reported=20150318,sou |ce=internet,cvss2=4.4/AV:L/ |rce=internet,cvss2=4.4/AV:L |AC:M/Au:N/C:P/I:P/A:P,rhel- |/AC:M/Au:N/C:P/I:P/A:P,rhel |5/libXfont=affected,rhel-6/ |-5/libXfont=affected,rhel-6 |libXfont=affected,rhel-7/li |/libXfont=affected,rhel-7/l |bXfont=affected,fedora-all/ |ibXfont=affected,fedora-all |libXfont=affected |/libXfont=affected --- Doc Text *updated* --- An integer truncation flaw was discovered in the way libXfont processed certain Glyph Bitmap Distribution Format (BDF) fonts. A malicious, local user could exploit this issue to crash the X.Org server or potentially execute arbitrary code with the privileges of the X.Org server. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=xtujckLE5D&a=cc_unsubscribe

Reply

Red Hat Bugzilla

5:47 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=important,public=201 |impact=important,public=201 |50317,reported=20150318,sou |50317,reported=20150318,sou |rce=internet,cvss2=4.4/AV:L |rce=internet,cvss2=4.4/AV:L |/AC:M/Au:N/C:P/I:P/A:P,rhel |/AC:M/Au:N/C:P/I:P/A:P,rhel |-5/libXfont=affected,rhel-6 |-5/libXfont=affected,rhel-6 |/libXfont=affected,rhel-7/l |/libXfont=affected,rhel-7/l |ibXfont=affected,fedora-all |ibXfont=affected,fedora-all |/libXfont=affected |/libXfont=affected,cwe=CWE- | |704->CWE-681->CWE-805 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=l2zFWr6Q0o&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Friday, 10 April Fri, 10 Apr

8:27 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 --- Doc Text *updated* by Martin Prpic <mprpic(a)redhat.com> --- An integer truncation flaw was discovered in the way libXfont processed certain Glyph Bitmap Distribution Format (BDF) fonts. A malicious, local user could use this flaw to crash the X.Org server or, potentially, execute arbitrary code with the privileges of the X.Org server. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=JYVNiSjcPS&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Monday, 13 July Mon, 13 Jul

2:02 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Peter Hutterer <peter.hutterer(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1241939 Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1241939 [Bug 1241939] bdftopcf: bdf input, xtfont4.bdf, corrupt -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=Hx1iUqjTQL&a=cc_unsubscribe

Reply

Red Hat Bugzilla

12:31 p.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Benjamin Tissoires <btissoir(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks|1241939 | Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1241939 [Bug 1241939] bdftopcf: bdf input, xtfont4.bdf, corrupt -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=VvRwU8u2PP&a=cc_unsubscribe

Reply

Red Hat Bugzilla

Tuesday, 1 September Tue, 1 Sep

8:19 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1258892 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=VRtANB1o29&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

8:19 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1258893 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=1LERpedyya&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

8:19 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1258894 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=sVKlfTAynl&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

8:20 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1258895 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=kBcndBSyor&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

Thursday, 3 September Thu, 3 Sep

6:26 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 --- Comment #4 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Red Hat Enterprise Linux 6 Via RHSA-2015:1708 https://rhn.redhat.com/errata/RHSA-2015-1708.html -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=KdkwIWvZ3t&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

Monday, 7 September Mon, 7 Sep

12:07 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 ddu(a)redhat.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ddu(a)redhat.com --- Comment #5 from ddu(a)redhat.com --- Hi guys, Does this problem CVE affect libXfont shipped with RHEL5? Best regards, Dapeng -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=uv1buty5g8&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

9:08 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Matt Goldman <magoldma(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |magoldma(a)redhat.com --- Comment #6 from Matt Goldman <magoldma(a)redhat.com> --- Dapeng, Yes, from the whiteboard RHEL 5 is affected: rhel-5/libXfont=affected However, RHEL 5 has entered Production Phase 3 as of January 31, 2014. As per our errata policy: "During the Production 3 Phase, Critical impact Security Advisories (RHSAs) and selected Urgent Priority Bug Fix Advisories (RHBAs) may be released as they become available." Red Hat Enterprise Linux Life Cycle https://access.redhat.com/support/policy/updates/errata#Production_3_Phase This means that Red Hat will not be addressing Low, Moderate, or Important impact CVE's in relation to RHEL 5. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=XxEqa0dA3K&a=cc_unsubscribe _______________________________________________ fonts-bugs mailing list fonts-bugs(a)lists.fedoraproject.org http://lists.fedoraproject.org/postorius/fonts-bugs@lists.fedoraproject.org

Reply

Red Hat Bugzilla

Thursday, 1 October Thu, 1 Oct

3:29 a.m.

New subject: [Bug 1203719] CVE-2015-1804 libXfont: out-of-bounds memory access in bdfReadCharacters

https://bugzilla.redhat.com/show_bug.cgi?id=1203719 Stefan Cornelius <scorneli(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=important,public=201 |impact=important,public=201 |50317,reported=20150318,sou |50317,reported=20150318,sou |rce=internet,cvss2=4.4/AV:L |rce=internet,cvss2=6.9/AV:L |/AC:M/Au:N/C:P/I:P/A:P,rhel |/AC:M/Au:N/C:C/I:C/A:C,rhel |-5/libXfont=affected,rhel-6 |-5/libXfont=affected,rhel-6 |/libXfont=affected,rhel-7/l |/libXfont=affected,rhel-7/l |ibXfont=affected,fedora-all |ibXfont=affected,fedora-all |/libXfont=affected,cwe=CWE- |/libXfont=affected,cwe=CWE- |704->CWE-681->CWE-805 |704->CWE-681->CWE-805 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=1Xx1T9C8Uq&a=cc_unsubscribe

Reply

3155

days inactive

3351

days old

fonts-bugs@lists.fedoraproject.org

Manage subscription

20 comments

1 participants

tags (0)

participants (1)

Red Hat Bugzilla