tce-load -i compiletc xorg-proto fontconfig-dev libxcb-dev xtrans libfontenc-dev wget https://www.x.org/archive//individual/lib/libXfont-1.5.3.tar.bz2 cd libXfont-1.5.3 CC="gcc -flto -mtune=generic -Os -pipe" CXX="g++ -flto -mtune=generic -Os -pipe -fno-exceptions -fno-rtti" ./configure --prefix=/usr/local --disable-static --localstatedir=/var --sysconfdir=/etc --disable-devel-docs find . -name Makefile -type f -exec sed -i 's/-g -O2//g' {} \; make [0m 11.79s] sudo make install libXfont 1.5.4 Open files with O_NOFOLLOW. (CVE-2017-16611) A non-privileged X client can instruct X server running under root to open any file by creating own directory with "fonts.dir", "fonts.alias" or any font file being a symbolic link to any other file in the system. X server will then open it. This can be issue with special files such as /dev/watchdog.