xorg-x11-libs security update
Specially crafted font files could cause a buffer overflow
in applications that use libXfont to load such files
(CVE-2011-2895).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 5102
Fixed bugs
bnc#709851
VUL-0: xCVE-2011-2895: org-x11-libs: libXfont LZW decompression heap corruption
CVE#CVE-2011-2895
The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont before 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD before 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x before 5.0.3 and 5.1.x befo
