CVE-2007-1352
EPSS 1.7%
Description
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
How to fix CVE-2007-1352
To remediate CVE-2007-1352, upgrade the affected package to a fixed version below.
- Debian/libxfont—upgrade to 1:1.2.2-2 or later
Is CVE-2007-1352 being exploited?
Low — EPSS is 1.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:1.2.2-2