Red Hat Bugzilla – Bug 10897
X11 font server vulnerability
Last modified: 2008-05-01 11:37:55 EDT
The purpose of this email is twofold: 1) to inform you of a reported
vulnerability by a third party, not myself, involving one of your
products, and 2) to obtain confirmation/clarification and knowledge of any
measures taken to address this in the event it is viable.
Below is the report (snipped):
--- Begin report ---
A denial of service exists in the X11 font server shipped with RedHat
Linux 6.x. Due to improper input validation, it is possible for any user
to crash the X fontserver. This will prevent the X server from functioning
--- End report ---
An explanation of my query - I work for Infrastructure Defense, Inc.,
which provides private publications to fortune 500 companies about
information/computer security trends, vulnerabilities, etc. I strive to
contact the appropriate parties whenever there is a question as to the
veracity of a post, claim, other. Hence, my email to you.
I hope to hear from you soon.
Servio Medina - firstname.lastname@example.org
Information Security Analyst
*** This bug has been marked as a duplicate of 10877 ***