Integer overflow in the ProcRenderAddGlyphs function in the Render
extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server,
allows local users to execute arbitrary code via a crafted X protocol
request that triggers memory corruption during processing of glyph
management data structures.
Updated: 2015-07-29 20:28:40 UTC (commit 9756)