Synopsis: Important: libXfont security update
Issue date: 2008-01-17
CVE Names: CVE-2008-0006
A heap based buffer overflow flaw was found in the way the X.Org server
handled malformed font files. A malicious local user could exploit this
issue to potentially execute arbitrary code with the privileges of the
X.Org server. (CVE-2008-0006)
SL 5.x
SRPMS:
libXfont-1.2.2-1.0.3.el5_1.src.rpm
i386:
libXfont-1.2.2-1.0.3.el5_1.i386.rpm
libXfont-devel-1.2.2-1.0.3.el5_1.i386.rpm
x86_64:
libXfont-1.2.2-1.0.3.el5_1.i386.rpm
libXfont-1.2.2-1.0.3.el5_1.x86_64.rpm
libXfont-devel-1.2.2-1.0.3.el5_1.i386.rpm
libXfont-devel-1.2.2-1.0.3.el5_1.x86_64.rpm
-Connie Sieh
-Troy Dawson