A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server.
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 08 Jul 2026 10:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server. | |
| Title | libXfont2 PCF Font Parsing Heap Buffer Overflow | |
| First Time appeared |
X.org
X.org libxfont2 |
|
| Weaknesses | CWE-122 | |
| CPEs | cpe:2.3:a:x.org:libxfont2:*:*:*:*:*:*:*:* | |
| Vendors & Products |
X.org
X.org libxfont2 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: suse
Published:
Updated: 2026-07-08T09:12:51.480Z
Reserved: 2026-06-18T09:26:55.988Z
Link: CVE-2026-56002
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses