Vulnerability Details CVE-2026-56001
A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could be used by attackers able to access the X Server to execute code within the X server cont
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 30.1%
CVSS Severity
CVSS v3 Score 8.5
Products affected by CVE-2026-56001
-
cpe:2.3:a:x:libxfont:2.0.0
-
cpe:2.3:a:x:libxfont:2.0.1
-
cpe:2.3:a:x:libxfont:2.0.2
-
cpe:2.3:a:x:libxfont:2.0.3
-
cpe:2.3:a:x:libxfont:2.0.4