Joerg Sonnenberger

Name of the Vulnerable Software and Affected Versions: libXfont version 1.3.1 Description: The issue is caused by a single byte overflow in the catalogue.c component of the libXfont library. This overflow can be exploited by remote attackers, potentially leading to unspecified impact, including a denial of service due to the use of the readlink service. Recommendations: For libXfont version 1.3.1, consider restricting access to the catalogue.c component as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.