Xfree86 Project » Xfree86 X : Security Vulnerabilities, CVEs,
Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections.
Max CVSS
7.2
EPSS Score
0.07%
Published
2006-09-13
Updated
2018-10-17
Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted Adobe Font Metrics (AFM) files with a modified number of character metrics (StartCharMetrics), which leads to a heap-based buffer overflow.
Max CVSS
7.2
EPSS Score
0.07%
Published
2006-09-13
Updated
2018-10-17
2 vulnerabilities found