X.Org libXfont LZW Decompression 'BufCompressedFill()' Local Privilege Escalation Vulnerability

The 'libXfont' library is prone to a local privilege-escalation vulnerability because it fails to adequately bounds-check user-supplied data.

An attacker can exploit this vulnerability to execute arbitrary code with elevated privileges. Failed exploit attempts will likely cause denial-of-service conditions.

Versions prior to libXfont 1.4.4 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus