X.org: >> X Font Server >> 1.0.2 Security Vulnerabilities
Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values, which triggers a heap-based buffer overflow.
CVSS Score
6.8
EPSS Score
0.241
Published
2007-10-05