[OE-core] [PATCH] libxfont: CVE-2017-13720, CVE-2017-13722
Alexander Kanavin
alexander.kanavin at linux.intel.com
Wed Nov 1 17:07:33 UTC 2017
On 11/01/2017 06:28 PM, Catalin Enache wrote:
> In the PatternMatch function in fontfile/fontdir.c in libXfont through 1.5.2
> and 2.x before 2.0.2, an attacker with access to an X connection can cause
> a buffer over-read during pattern matching of fonts, leading to information
> disclosure or a crash (denial of service). This occurs because '\0'
> characters are incorrectly skipped in situations involving ? characters.
>
> In the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2
> and 2.x before 2.0.2, a missing boundary check (for PCF files) could be used
> by local attackers authenticated to an Xserver for a buffer over-read, for
> information disclosure or a crash of the X server.
If both 1.x and 2.x are vulnerable, you should update them both (not
just 1.x). Also, it's better to update to a version that is not
vulnerable, rather than backport patches.
Alex
More information about the Openembedded-core
mailing list