CVE-2014-0209

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which triggers a heap-based buffer overflow, related to metadata.

References

http://advisories.mageia.org/MGASA-2014-0278.html

http://lists.opensuse.org/opensuse-updates/2014-05/msg00073.html

http://lists.x.org/archives/xorg-announce/2014-May/002431.html

http://rhn.redhat.com/errata/RHSA-2014-1893.html

http://seclists.org/fulldisclosure/2014/Dec/23

http://secunia.com/advisories/59154

http://www.debian.org/security/2014/dsa-2927

http://www.mandriva.com/security/advisories?name=MDVSA-2015:145

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

http://www.securityfocus.com/archive/1/534161/100/0/threaded

http://www.securityfocus.com/bid/67382

http://www.ubuntu.com/usn/USN-2211-1

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Details

Source: MITRE

Published: 2014-05-15

Updated: 2018-10-09

Type: CWE-189

Risk Information

CVSS v2

Base Score: 4.6

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.9

Severity: MEDIUM

Tenable Plugins

View all (21 total)

IDNameProductFamilySeverity
82398Mandriva Linux Security Advisory : libxfont (MDVSA-2015:145-1)NessusMandriva Local Security Checks
high
82003GLSA-201406-11 : libXfont: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
80823Oracle Solaris Third-Party Patch Update : xorg (multiple_vulnerabilities_in_x_org2)NessusSolaris Local Security Checks
high
79563CentOS 5 : libXfont (CESA-2014:1893)NessusCentOS Local Security Checks
high
79557OracleVM 3.3 : libXfont (OVMSA-2014-0080)NessusOracleVM Local Security Checks
high
79427Scientific Linux Security Update : libXfont on SL5.x i386/x86_64 (20141124)NessusScientific Linux Local Security Checks
high
79425RHEL 5 : libXfont (RHSA-2014:1893)NessusRed Hat Local Security Checks
high
79424Oracle Linux 5 : libXfont (ELSA-2014-1893)NessusOracle Linux Local Security Checks
high
79371Oracle Linux 6 / 7 : libXfont (ELSA-2014-1870)NessusOracle Linux Local Security Checks
high
79330Scientific Linux Security Update : libXfont on SL6.x, SL7.x i386/srpm/x86_64 (20141118)NessusScientific Linux Local Security Checks
high
79327RHEL 6 / 7 : libXfont (RHSA-2014:1870)NessusRed Hat Local Security Checks
high
79313CentOS 6 / 7 : libXfont (CESA-2014:1870)NessusCentOS Local Security Checks
high
78347Amazon Linux AMI : libXfont (ALAS-2014-404)NessusAmazon Linux Local Security Checks
high
76693Fedora 19 : libXfont-1.4.8-1.fc19 (2014-8223)NessusFedora Local Security Checks
high
76514Fedora 20 : libXfont-1.4.8-1.fc20 (2014-8208)NessusFedora Local Security Checks
high
76440Mandriva Linux Security Advisory : libxfont (MDVSA-2014:132)NessusMandriva Local Security Checks
high
75371openSUSE Security Update : libXfont (openSUSE-SU-2014:0711-1)NessusSuSE Local Security Checks
high
74463SuSE 11.3 Security Update : xorg-x11-libs (SAT Patch Number 9272)NessusSuSE Local Security Checks
high
74022Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 / 14.04 LTS : libxfont vulnerabilities (USN-2211-1)NessusUbuntu Local Security Checks
high
74004FreeBSD : libXfont -- X Font Service Protocol and Font metadata file handling issues (b060ee50-daba-11e3-99f2-bcaec565249c)NessusFreeBSD Local Security Checks
high
73997Debian DSA-2927-1 : libxfont - security updateNessusDebian Local Security Checks
high