RedHat Update For LibXfont RHSA-2008:0064-01 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The libXfont package contains the X.Org X11 libXfont runtime library. A heap based buffer overflow flaw was found in the way the X.Org server handled malformed font files. A malicious local user could exploit this issue to potentially execute arbitrary code with the privileges of the X.Org server. (CVE-2008-0006) Users of X.Org libXfont should upgrade to these updated packages, which contain a backported patch to resolve this issue.

Affected

libXfont on Red Hat Enterprise Linux (v. 5 server)

References

https://www.redhat.com/archives/rhsa-announce/2008-January/msg00012.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-0006
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

RedHat Security Advisory RHSA-2008:0002
RedHat Security Advisory RHSA-2009:0355
RedHat Security Advisory RHSA-2009:1130
RedHat Security Advisory RHSA-2009:0431
RedHat Security Advisory RHSA-2009:0001

RedHat Update for libXfont RHSA-2008:0064-01

Take action and discover your vulnerabilities