Red Hat Bugzilla – Bug 202472
CVE-2006-3467 Xorg PCF handling Integer overflow
Last modified: 2014-06-18 05:08:41 EDT
+++ This bug was initially created as a clone of Bug #202469 +++
An integer overflow was discovered in the way freetype processes malformed PCF
files. It seems that Xorg also contains the same PCF processing code as
freetype, there it too is vulnerable this issue.
We initally described this issue for freetype in bug 190593.
The upstream bug is here:
This issue likely also affects RHEL2.1
Created attachment 134155 [details]
There is a demo font file in attachment 134276 [details]
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.