FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libXfont -- multiple memory leaks

Affected packages
libXfont < 1.5.3
libXfont2 < 2.0.2

Details

VuXML ID 3b9590a1-e358-11e7-a293-54e1ad3d6335
Discovery 2017-10-04
Entry 2017-12-17

The freedesktop.org project reports:

If a pattern contains '?' character, any character in the string is skipped, even if it is '\0'. The rest of the matching then reads invalid memory.

Without the checks a malformed PCF file can cause the library to make atom from random heap memory that was behind the `strings` buffer. This may crash the process or leak information.

References

CVE Name CVE-2017-13720
CVE Name CVE-2017-13722
URL https://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=672bb944311392e2415b39c0d63b1e1902905bcd
URL https://cgit.freedesktop.org/xorg/lib/libXfont/commit/?id=d1e670a4a8704b8708e493ab6155589bcd570608