Detections
Analytics
Amazon Linux AMI : libXfont (ALAS-2014-404)
high Nessus Plugin ID 78347
Language:
Synopsis
The remote Amazon Linux AMI host is missing a security update.Description
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow.Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3) fs_read_query_info, (4) fs_read_extent_info, (5) fs_read_glyphs, (6) fs_read_list, or (7) fs_read_list_info function.
Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias file to the font path, which triggers a heap-based buffer overflow, related to metadata.
Solution
Run 'yum update libXfont' to update your system.See Also
Plugin Details
Severity: High
ID: 78347
File Name: ala_ALAS-2014-404.nasl
Version: 1.3
Type: local
Agent: unix
Published: 10/12/2014
Updated: 4/18/2018
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 7.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: p-cpe:/a:amazon:linux:libxfont, p-cpe:/a:amazon:linux:libxfont-debuginfo, p-cpe:/a:amazon:linux:libxfont-devel, cpe:/o:amazon:linux
Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list
Patch Publication Date: 9/17/2014
Reference Information
CVE: CVE-2014-0209, CVE-2014-0210, CVE-2014-0211
ALAS: 2014-404