The MITRE CVE dictionary describes this issue as:
Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a different vulnerability than CVE-2004-0083 and CVE-2004-0106.
Red Hat security errata
|Red Hat Enterprise Linux version 2.1 (XFree86)||RHSA-2004:060||February 13, 2004|
|Red Hat Enterprise Linux version 3 (XFree86)||RHSA-2004:061||February 13, 2004|
|Red Hat Linux 9 (XFree86)||RHSA-2004:059||February 13, 2004|
Red Hat would like to thank David Dawes from XFree86 and iDefense for reporting and working on this issue.
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.