Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Debian Security Advisory DSA 2293-1 (libxfont)

Information

Severity

Severity

Critical

Family

Family

Debian Local Security Checks

CVSSv2 Base

CVSSv2 Base

9.3

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

10 years ago

Modified

Modified

3 years ago

Summary

The remote host is missing an update to libxfont announced via advisory DSA 2293-1.

Insight

Insight

Tomas Hoger found a buffer overflow in the X.Org libXfont library, which may allow for a local privilege escalation through crafted font files. For the oldstable distribution (lenny), this problem has been fixed in version 1.3.3-2. For the stable distribution (squeeze), this problem has been fixed in version 1.4.1-3. For the unstable distribution (sid), this problem has been fixed in version 1.4.4-1.

Solution

Solution

We recommend that you upgrade your libxfont packages.

Common Vulnerabilities and Exposures (CVE)