Description
A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Wed, 08 Jul 2026 12:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 08 Jul 2026 10:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server. | |
| Title | libXfont2 PCF Font Parsing Heap Buffer Overflow | |
| First Time appeared |
X.org
X.org libxfont2 |
|
| Weaknesses | CWE-122 | |
| CPEs | cpe:2.3:a:x.org:libxfont2:*:*:*:*:*:*:*:* | |
| Vendors & Products |
X.org
X.org libxfont2 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: suse
Published:
Updated: 2026-07-08T12:07:36.415Z
Reserved: 2026-06-18T09:26:55.988Z
Link: CVE-2026-56002
Updated: 2026-07-08T12:07:30.351Z
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-122
Heap-based Buffer Overflow