CVE-2007-1351

Ubuntu Linux - Numeric Error

Title source: rule

Description

Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.

References (68)

[Various Sources] http://issues.foresightlinux.org/browse/FL-223

[Patch] http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=501

[Mailing List] http://lists.apple.com/archives/Security-announce/2007/Nov/msg00003.html

[Mailing List] http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

[Various Sources] http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2007-0125.html

[Vendor Advisory] http://secunia.com/advisories/24741

[Third Party Advisory] http://secunia.com/advisories/24756

[Third Party Advisory] http://secunia.com/advisories/24758

[Third Party Advisory] http://secunia.com/advisories/24765

[Vendor Advisory] http://secunia.com/advisories/24770

[Vendor Advisory] http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.626733

[Product] http://sourceforge.net/project/shownotes.php?group_id=3157&release_id=498954

[Product] http://sourceforge.net/project/shownotes.php?release_id=498954

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-26-102886-1

[Vendor Advisory] http://support.apple.com/kb/HT3438

[Vendor Advisory] http://support.avaya.com/elmodocs2/security/ASA-2007-178.htm

[Vendor Advisory] http://support.avaya.com/elmodocs2/security/ASA-2007-193.htm

[Third Party Advisory] http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2007:079

... and 48 more

Scores

EPSS 0.0777

EPSS Percentile 91.8%

Classification

CWE

CWE-189

Status draft

Affected Products (39)

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

ubuntu/ubuntu_linux

x.org/libxfont

xfree86_project/x11r6

xfree86_project/x11r6

... and 24 more

Timeline

Published Apr 06, 2007

Tracked Since Feb 18, 2026