Sun Microsystems Inc. Information for VU#312313

Solaris X Window Font Service (XFS) daemon contains buffer overflow in Dispatch() function



Vendor Statement

The Solaris X font server (xfs(1)) is affected by VU#312313 in the following supported versions of Solaris:

Solaris 2.6
Solaris 7
Solaris 8
Solaris 9

Patches are being generated for all of the above releases.  Sun will be publishing a Sun Alert for this issue at the following location shortly:


The patches will be available from:

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.