Red Hat Bugzilla – Bug 10877
RedHat 6.x X Font Server DoS Vulnerability
Last modified: 2008-05-01 11:37:55 EDT
From the discussion there:
A denial of service exists in the X11 font server shipped with RedHat Linux
6.x. Due to improper input validation, it is possible for any user to crash
the X fontserver. This will prevent the X server from functioning properly.
(There is also an exploit:
*** Bug 10897 has been marked as a duplicate of this bug. ***
Any word on this? Not only would it be nice to have these things fixed, it looks
bad for Linux in general when it takes a long time. (See, for instance
(I'm sorry that I don't have the programming skills myself to give you a patch.)
*** Bug 10951 has been marked as a duplicate of this bug. ***
Fixed in our currently pending errata soon to be released.