Vulnerability Details : CVE-2017-13720
In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2 and 2.x before 2.0.2, an attacker with access to an X connection can cause a buffer over-read during pattern matching of fonts, leading to information disclosure or a crash (denial of service). This occurs because '\0' characters are incorrectly skipped in situations involving ? characters.
Vulnerability category: Denial of serviceInformation leak
Products affected by CVE-2017-13720
- cpe:2.3:a:x.org:libxfont:*:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:libxfont:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:libxfont:2.0.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-13720
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-13720
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.6
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:P |
3.9
|
4.9
|
NIST | |
7.1
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H |
1.8
|
5.2
|
NIST |
CWE ids for CVE-2017-13720
-
The product reads data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-13720
-
http://www.debian.org/security/2017/dsa-3995
Debian -- Security Information -- DSA-3995-1 libxfont
-
https://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=d1e670a4a8704b8708e493ab6155589bcd570608
xorg/lib/libXfont - X font handling library for server & utilities (mirrored from https://gitlab.freedesktop.org/xorg/lib/libxfont)Patch;Third Party Advisory
-
https://www.x.org/releases/individual/lib/libXfont2-2.0.2.tar.bz2
Vendor Advisory
-
https://security.gentoo.org/glsa/201711-08
LibXfont, LibXfont2: Multiple vulnerabilities (GLSA 201711-08) — Gentoo security
-
https://bugzilla.suse.com/show_bug.cgi?id=1054285
Bug 1054285 – VUL-1: CVE-2017-13720: libXfont: string overread / Check for end of string in PatterMatch.Issue Tracking;Third Party Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=1500690
1500690 – (CVE-2017-13720) CVE-2017-13720 libXfont: Insufficient input validation in fontdir.cIssue Tracking;Third Party Advisory
Jump to