Synopsis:	Important: libXfont security update
Issue date:	2008-01-17
CVE Names:	CVE-2008-0006

A heap based buffer overflow flaw was found in the way the X.Org server
handled malformed font files. A malicious local user could exploit this
issue to potentially execute arbitrary code with the privileges of the
X.Org server. (CVE-2008-0006)

SL 5.x

    SRPMS:
libXfont-1.2.2-1.0.3.el5_1.src.rpm
    i386:
libXfont-1.2.2-1.0.3.el5_1.i386.rpm
libXfont-devel-1.2.2-1.0.3.el5_1.i386.rpm
    x86_64:
libXfont-1.2.2-1.0.3.el5_1.i386.rpm
libXfont-1.2.2-1.0.3.el5_1.x86_64.rpm
libXfont-devel-1.2.2-1.0.3.el5_1.i386.rpm
libXfont-devel-1.2.2-1.0.3.el5_1.x86_64.rpm

-Connie Sieh
-Troy Dawson