Oval Definition:oval:com.redhat.rhsa:def:20080064
Revision Date:2008-01-28Version:638
Title:RHSA-2008:0064: libXfont security update (Important)
Description:The libXfont package contains the X.Org X11 libXfont runtime library.

  • A heap based buffer overflow flaw was found in the way the X.Org server handled malformed font files. A malicious local user could exploit this issue to potentially execute arbitrary code with the privileges of the X.Org server. (CVE-2008-0006)

    Users of X.Org libXfont should upgrade to these updated packages, which contain a backported patch to resolve this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-0006
    RHSA-2008:0064
    RHSA-2008:0064-01
    RHSA-2008:0064-01
    Platform(s):Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • libXfont is earlier than 0:1.2.2-1.0.3.el5_1
  • AND libXfont is signed with Red Hat redhatrelease2 key
  • libXfont-devel is earlier than 0:1.2.2-1.0.3.el5_1
  • AND libXfont-devel is signed with Red Hat redhatrelease2 key
    • BACK