Back to search
CVE-2007-1667
Published: Mar 24, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
102888
vendor-advisory
x_refsource_SUNALERT
http://support.avaya.com/elmodocs2/security/ASA-2007-176.htm
x_refsource_CONFIRM
24745
third-party-advisory
x_refsource_SECUNIA
33937
third-party-advisory
x_refsource_SECUNIA
24771
third-party-advisory
x_refsource_SECUNIA
24756
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0126
vendor-advisory
x_refsource_REDHAT
23300
vdb-entry
x_refsource_BID
http://support.apple.com/kb/HT3438
x_refsource_CONFIRM
24739
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2009-02-12
vendor-advisory
x_refsource_APPLE
GLSA-200705-06
vendor-advisory
x_refsource_GENTOO
24758
third-party-advisory
x_refsource_SECUNIA
USN-453-1
vendor-advisory
x_refsource_UBUNTU
USN-481-1
vendor-advisory
x_refsource_UBUNTU
https://issues.rpath.com/browse/RPL-1211
x_refsource_CONFIRM
RHSA-2007:0125
vendor-advisory
x_refsource_REDHAT
24741
third-party-advisory
x_refsource_SECUNIA
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=414045
x_refsource_CONFIRM
25992
third-party-advisory
x_refsource_SECUNIA
26177
third-party-advisory
x_refsource_SECUNIA
USN-453-2
vendor-advisory
x_refsource_UBUNTU
ADV-2007-1531
vdb-entry
x_refsource_VUPEN
[xorg-announce] 20070403 various integer overflow vulnerabilites in xserver, libX11 and libXfont
mailing-list
x_refsource_MLIST
24791
third-party-advisory
x_refsource_SECUNIA
24975
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2007:027
vendor-advisory
x_refsource_SUSE
30161
third-party-advisory
x_refsource_SECUNIA
GLSA-200805-07
vendor-advisory
x_refsource_GENTOO
DSA-1294
vendor-advisory
x_refsource_DEBIAN
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=231684
x_refsource_CONFIRM
1017864
vdb-entry
x_refsource_SECTRACK
24765
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2007:008
vendor-advisory
x_refsource_SUSE
20070404 rPSA-2007-0065-1 freetype xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs
mailing-list
x_refsource_BUGTRAQ
20070405 FLEA-2007-0009-1: xorg-x11 freetype
mailing-list
x_refsource_BUGTRAQ
25131
third-party-advisory
x_refsource_SECUNIA
DSA-1858
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:9776
vdb-entry
signature
x_refsource_OVAL
24953
third-party-advisory
x_refsource_SECUNIA
ADV-2007-1217
vdb-entry
x_refsource_VUPEN
[4.0] 011: SECURITY FIX: April 4, 2007
vendor-advisory
x_refsource_OPENBSD
https://issues.rpath.com/browse/RPL-1213
x_refsource_CONFIRM
25004
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:147
vendor-advisory
x_refsource_MANDRIVA
25305
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:1693
vdb-entry
signature
x_refsource_OVAL
25072
third-party-advisory
x_refsource_SECUNIA
[3.9] 021: SECURITY FIX: April 4, 2007
vendor-advisory
x_refsource_OPENBSD
25112
third-party-advisory
x_refsource_SECUNIA
http://issues.foresightlinux.org/browse/FL-223
x_refsource_CONFIRM
36260
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0157
vendor-advisory
x_refsource_REDHAT
MDKSA-2007:079
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now