CVE-2008-0006

Published: 18 January 2008

Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms including Sun Solaris, allows context-dependent attackers to execute arbitrary code via a PCF font with a large difference between the last col and first col values in the PCF_BDF_ENCODINGS table.

Priority

Medium

Status

Package Release Status
libxfont
Launchpad, Ubuntu, Debian
Upstream Pending
(b76df66d2c507898472bba0f9986ef5700029a36)
xorg-server
Launchpad, Ubuntu, Debian
Upstream Pending
(8e133d96740d010a4fd969a8188e6e71fb2cafe2)