CVE-2013-6462

EPSS 12.0%

libxfont - buffer overflow

Published: 1/9/2014Modified: 4/28/2026

Description

Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in a character name in a BDF font file.

Affected packages (2)

Debian/libxfontfrom 0, < 1:1.4.7-1
Debian/libxfontfrom 0, < 1:1.4.1-4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-6462