X.Org · Libxfont · CVE-2007-5199
Name of the Vulnerable Software and Affected Versions:
libXfont version 1.3.1
Description:
The issue is caused by a single byte overflow in the catalogue.c component of the libXfont library. This overflow can be exploited by remote attackers, potentially leading to unspecified impact, including a denial of service due to the use of the readlink service.
Recommendations:
For libXfont version 1.3.1, consider restricting access to the catalogue.c component as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.