[3.4] libxfont: Open files with O_NOFOLLOW (CVE-2017-16611)
A non-privileged X client can instruct X server running under root to
open any file by creating own directory with “fonts.dir”,
“fonts.alias” or any font file being a symbolic link to any other file
in the system. X server will then open it. This can be issue
with special files such as /dev/watchdog.
Fixed In Version:
libXfont 1.5.4, libXfont2 2.0.3
References:
http://openwall.com/lists/oss-security/2017/11/28/7
Patch:
(from redmine: issue id 8226, created on 2017-12-01, closed on 2018-01-12)
- Relations:
- parent #8223 (closed)
- Changesets:
- Revision 29a23c83 by Natanael Copa on 2017-12-07T11:55:29Z:
main/libxfont: security upgrade to 1.5.4 (CVE-2017-16611)
fixes #8226