Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4b25212e by Salvatore Bonaccorso at 2026-07-09T21:27:52+02:00
Track fixed version for libxfont issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1521,15 +1521,15 @@ CVE-2026-10570 (The Sympl Repeater for ACF and 
Elementor plugin for WordPress is
 CVE-2025-12799 (A flaw was found in Jastow. Jastow is vulnerable to Cross-Site 
Scripti ...)
        NOT-FOR-US: Jastow
 CVE-2026-56003 (A heap buffer overflow due to missing size checking in the 
property bu ...)
-       - libxfont <unfixed> (bug #1141702)
+       - libxfont 1:2.0.8-1 (bug #1141702)
        NOTE: https://www.openwall.com/lists/oss-security/2026/07/08/1
        NOTE: Fixed by: 
https://gitlab.freedesktop.org/xorg/lib/libxfont/-/commit/dff957a5158da038a282a59a31fe736702732939
 (libXfont2-2.0.8)
 CVE-2026-56002 (A heap bufferflow in pcfReadFont() due to missing glyph bounds 
checkin ...)
-       - libxfont <unfixed> (bug #1141702)
+       - libxfont 1:2.0.8-1 (bug #1141702)
        NOTE: https://www.openwall.com/lists/oss-security/2026/07/08/1
        NOTE: Fixed by: 
https://gitlab.freedesktop.org/xorg/lib/libxfont/-/commit/b4389e0b1d84a690b819bb27b1439968811a3674
 (libXfont2-2.0.8)
 CVE-2026-56001 (A heap buffer overflow in BitmapScaleBitmaps in libXfont2 
before 2.0.8 ...)
-       - libxfont <unfixed> (bug #1141702)
+       - libxfont 1:2.0.8-1 (bug #1141702)
        NOTE: https://www.openwall.com/lists/oss-security/2026/07/08/1
        NOTE: Fixed by: 
https://gitlab.freedesktop.org/xorg/lib/libxfont/-/commit/be0b08e2d354138d3222b4490e2a77c6ee42f778
 (libXfont2-2.0.8)
 CVE-2026-56000 (Local attackers with a X connection able to provide GLX commit 
to the  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b25212e944dc2fa80b865f0373be295f7b44d16

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b25212e944dc2fa80b865f0373be295f7b44d16
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to