The bdfReadProperties function in bitmap/bdfread.c in X.Org libXfont prior to 1.4.9 and 1.5.x prior to 1.5.1 allows remote authenticated users to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a (1) negative or (2) large property count in a BDF font file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x libxfont |
||
x libxfont 1.5.0 |