CVE-2013-6462

EPSS 12.0%

libxfont - buffer overflow

發布日:2014/1/9修改日:2026/4/28

也稱為:DEBIAN-CVE-2013-6462

描述

Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in a character name in a BDF font file.

受影響套件(2)

Debian/libxfontfrom 0, < 1:1.4.7-1
Debian/libxfontfrom 0, < 1:1.4.1-4

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-6462