ELSA-2014-1893

ULN >
Oracle Linux Errata repository >
ELSA-2014-1893

ELSA-2014-1893 - libXfont security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2014-11-24

Description

[1.2.2-1.0.6]
- CVE-2014-0209: integer overflow of allocations in font metadata file parsing (bug 1163602, bug 1163601)
- CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies (bug 1163602, bug 1163601)
- CVE-2014-0211: integer overflows calculating memory needs for xfs replies (bug 1163602, bug 1163601)

Related CVEs

CVE-2014-0210

CVE-2014-0209

CVE-2014-0211

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 5 (i386)	libXfont-1.2.2-1.0.6.el5_11.src.rpm	e39afc6951abfe9b09e010d2c19b630b0a28b7ea7d7c70c70019a6516cb29228	-	ol5_i386_latest
	libXfont-1.2.2-1.0.6.el5_11.src.rpm	e39afc6951abfe9b09e010d2c19b630b0a28b7ea7d7c70c70019a6516cb29228	-	ol5_u11_i386_patch
	libXfont-1.2.2-1.0.6.el5_11.i386.rpm	e09e51714b00c7132b0c8c86e5f07d45cd2ad8ca791a96d89f49ddfb2afdfa8c	-	ol5_i386_latest
	libXfont-1.2.2-1.0.6.el5_11.i386.rpm	e09e51714b00c7132b0c8c86e5f07d45cd2ad8ca791a96d89f49ddfb2afdfa8c	-	ol5_u11_i386_patch
	libXfont-devel-1.2.2-1.0.6.el5_11.i386.rpm	8f50d7eb053e9c82100c4986f209ea97e435c3a449af0d539eb4f67a5f33522d	-	ol5_i386_latest
	libXfont-devel-1.2.2-1.0.6.el5_11.i386.rpm	8f50d7eb053e9c82100c4986f209ea97e435c3a449af0d539eb4f67a5f33522d	-	ol5_u11_i386_patch

Oracle Linux 5 (ia64)	libXfont-1.2.2-1.0.6.el5_11.src.rpm	e39afc6951abfe9b09e010d2c19b630b0a28b7ea7d7c70c70019a6516cb29228	-	ol5_ia64_latest
	libXfont-1.2.2-1.0.6.el5_11.src.rpm	e39afc6951abfe9b09e010d2c19b630b0a28b7ea7d7c70c70019a6516cb29228	-	ol5_u11_ia64_patch
	libXfont-1.2.2-1.0.6.el5_11.ia64.rpm	188c6e6e56e68a88f3812740b7f880d20f0632be55549e123661f5d1a842eaef	-	ol5_ia64_latest
	libXfont-1.2.2-1.0.6.el5_11.ia64.rpm	188c6e6e56e68a88f3812740b7f880d20f0632be55549e123661f5d1a842eaef	-	ol5_u11_ia64_patch
	libXfont-devel-1.2.2-1.0.6.el5_11.ia64.rpm	e1d38e233a1245552ab2440ceb35fc3076a2889483dcc0e5ef165d31e6529b31	-	ol5_ia64_latest
	libXfont-devel-1.2.2-1.0.6.el5_11.ia64.rpm	e1d38e233a1245552ab2440ceb35fc3076a2889483dcc0e5ef165d31e6529b31	-	ol5_u11_ia64_patch

Oracle Linux 5 (x86_64)	libXfont-1.2.2-1.0.6.el5_11.src.rpm	e39afc6951abfe9b09e010d2c19b630b0a28b7ea7d7c70c70019a6516cb29228	-	ol5_u11_x86_64_patch
	libXfont-1.2.2-1.0.6.el5_11.src.rpm	e39afc6951abfe9b09e010d2c19b630b0a28b7ea7d7c70c70019a6516cb29228	-	ol5_x86_64_latest
	libXfont-1.2.2-1.0.6.el5_11.i386.rpm	e09e51714b00c7132b0c8c86e5f07d45cd2ad8ca791a96d89f49ddfb2afdfa8c	-	ol5_u11_x86_64_patch
	libXfont-1.2.2-1.0.6.el5_11.i386.rpm	e09e51714b00c7132b0c8c86e5f07d45cd2ad8ca791a96d89f49ddfb2afdfa8c	-	ol5_x86_64_latest
	libXfont-1.2.2-1.0.6.el5_11.x86_64.rpm	fc0e27064e140550ba1306345ab2dd7f956ed7e95c89905a24d9afe68c3c757b	-	ol5_u11_x86_64_patch
	libXfont-1.2.2-1.0.6.el5_11.x86_64.rpm	fc0e27064e140550ba1306345ab2dd7f956ed7e95c89905a24d9afe68c3c757b	-	ol5_x86_64_latest
	libXfont-devel-1.2.2-1.0.6.el5_11.i386.rpm	8f50d7eb053e9c82100c4986f209ea97e435c3a449af0d539eb4f67a5f33522d	-	ol5_u11_x86_64_patch
	libXfont-devel-1.2.2-1.0.6.el5_11.i386.rpm	8f50d7eb053e9c82100c4986f209ea97e435c3a449af0d539eb4f67a5f33522d	-	ol5_x86_64_latest
	libXfont-devel-1.2.2-1.0.6.el5_11.x86_64.rpm	f4875555ae55726a250dc3cd757ceb3ae48b99fa09aa5cefb3395ee83730bfc2	-	ol5_u11_x86_64_patch
	libXfont-devel-1.2.2-1.0.6.el5_11.x86_64.rpm	f4875555ae55726a250dc3cd757ceb3ae48b99fa09aa5cefb3395ee83730bfc2	-	ol5_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691