Libxfont Security Update for Debian 7 LTS

Debian 9905 Published 2017-10-07 15:40 by Philipp Esselbach

News

Updated libxfont packages has been released for Debian GNU/Linux 7 LTS

Package : libxfont
Version : 1:1.4.5-5+deb7u1
CVE IDs : CVE-2017-13720 CVE-2017-13722

It was discovered that there two vulnerabilities the library providing
font selection and rasterisation, libxfont:

* CVE-2017-13720: If a pattern contained a '?' character any character
in the string is skipped even if it was a '\0'. The rest of the
matching then read invalid memory.

* CVE-2017-13722: A malformed PCF file could cause the library to make
reads from random heap memory that was behind the `strings` buffer,
leading to an application crash or a information leak.

For Debian 7 "Wheezy", this issue has been fixed in libxfont version
1:1.4.5-5+deb7u1.

We recommend that you upgrade your libxfont packages.

Extended Life Support Kernel Security Update for Oracle Linux 5

Debian GNU/Linux 9.2 released

Windows

Drivers 2879
AMD Radeon Software Adrenalin 24.4.1 released
2024-04-26 07:01 by Philipp Esselbach
Microsoft 11739
TypeScript 5.5 Beta released
2024-04-26 07:03 by Philipp Esselbach
Microsoft 11739
Azure SDK Release (April 2024) released
2024-04-25 07:14 by Philipp Esselbach

Linux

Software 42306
AM 6.6.3 released
2024-04-26 07:05 by Philipp Esselbach
Debian 9905
Putty and pdns-recursor security update for Debian
2024-04-26 06:54 by Philipp Esselbach
Ubuntu 6330
Thunderbird, Zabbix, FreeRDP, nghttp2, CryptoJS updates for Ubuntu
2024-04-26 06:49 by Philipp Esselbach

macOS

Apple 10159
watchOS 10.5 Beta 3 released
2024-04-24 06:52 by Philipp Esselbach
Apple 10159
tvOS 17.5 Beta 3 released
2024-04-24 06:52 by Philipp Esselbach
Apple 10159
visionOS 1.2 Beta 3 released
2024-04-24 06:52 by Philipp Esselbach

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...