Multiple integer overflow vulnerabilities in x.Org libXfont via a crafted xfs replyID: oval:org.secpod.oval:def:21517 | Date: (C)2014-10-30 (M)2023-12-07 |
Class: VULNERABILITY | Family: unix |
The host is installed with libXfont before 1.4.8 or 1.4.9x before 1.4.99.901 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to handle a crafted xfs reply. Successful exploitation could allow attackers to execute arbitrary code
Platform: |
Red Hat Enterprise Linux 5 |
Red Hat Enterprise Linux 6 |