CVE-2026-56001

Severity CVSS v4.0:
Pending analysis
Type:
CWE-122 Heap-based Buffer Overflow
Publication date:
08/07/2026
Last modified:
09/07/2026

Description

A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could be used by attackers able to access the X Server to execute code within the X server cont

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:x:libxfont:*:*:*:*:*:*:*:* 2.0.0 (including) 2.0.8 (excluding)