CVE Database


Impact: Important
Public: 2004-02-12


The MITRE CVE dictionary describes this issue as:

Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a different vulnerability than CVE-2004-0083 and CVE-2004-0106.

Find out more about CVE-2004-0084 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (XFree86) RHSA-2004:060 February 13, 2004
Red Hat Enterprise Linux version 3 (XFree86) RHSA-2004:061 February 13, 2004
Red Hat Linux 9 (XFree86) RHSA-2004:059 February 13, 2004

External References


Red Hat would like to thank David Dawes from XFree86 and iDefense for reporting and working on this issue.

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.