CVE-2008-0006 in Ubuntu

CVE-2008-0006

Priority

Medium

Description

Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and
libXfont libraries on some platforms including Sun Solaris, allows
context-dependent attackers to execute arbitrary code via a PCF font with a
large difference between the last col and first col values in the
PCF_BDF_ENCODINGS table.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006
http://www.ubuntu.com/usn/usn-571-1

Assigned-to

kees

Package

Source: libxfont (LP Ubuntu Debian)

Upstream:	pending (b76df66d2c507898472bba0f9986ef5700029a36)
Ubuntu 8.04 LTS (Hardy Heron):	released (1:1.3.1-1ubuntu1)

Package

Source: xorg-server (LP Ubuntu Debian)

Upstream:	pending (8e133d96740d010a4fd969a8188e6e71fb2cafe2)
Ubuntu 8.04 LTS (Hardy Heron):	released (2:1.4.1~git20080105-1ubuntu2)

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2012-06-01 15:18:29 UTC (commit 5347)