Debian Security Advisory DSA 2838-1 (libxfont - Buffer Overflow) Network Vulnerability

Summary

It was discovered that a buffer overflow in the processing of Glyph Bitmap Distribution fonts (BDF) could result in the execution of arbitrary code.

Solution

For the oldstable distribution (squeeze), this problem has been fixed in version 1:1.4.1-4. For the stable distribution (wheezy), this problem has been fixed in version 1:1.4.5-3. For the unstable distribution (sid), this problem has been fixed in version 1:1.4.7-1. We recommend that you upgrade your libxfont packages.

Affected

libxfont on Debian Linux

Detection

This check tests the installed software version using the apt package manager.

References

http://www.debian.org/security/2014/dsa-2838.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-6462

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 018-1 (tinyproxy)
Debian Security Advisory DSA 033-1 (analog)
Debian Security Advisory DSA 017-1 (jazip)
Debian Security Advisory DSA 1063-1 (phpgroupware)
Debian Security Advisory DSA 101-1 (sudo)

Debian Security Advisory DSA 2838-1 (libxfont - buffer overflow)

Take action and discover your vulnerabilities