Back to search
CVE-2007-6429
Published: Jan 18, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
28542
third-party-advisory
x_refsource_SECUNIA
29139
third-party-advisory
x_refsource_SECUNIA
27336
vdb-entry
x_refsource_BID
ADV-2008-0184
vdb-entry
x_refsource_VUPEN
xorg-mitshm-overflow(39764)
vdb-entry
x_refsource_XF
29622
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-0831
vendor-advisory
x_refsource_FEDORA
SUSE-SA:2008:003
vendor-advisory
x_refsource_SUSE
SUSE-SR:2008:008
vendor-advisory
x_refsource_SUSE
28532
third-party-advisory
x_refsource_SECUNIA
29707
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2008-078.htm
x_refsource_CONFIRM
28843
third-party-advisory
x_refsource_SECUNIA
DSA-1466
vendor-advisory
x_refsource_DEBIAN
20080117 Multiple Vendor X Server EVI and MIT-SHM Extensions Integer Overflow Vulnerabilities
third-party-advisory
x_refsource_IDEFENSE
28540
third-party-advisory
x_refsource_SECUNIA
SSRT080083
vendor-advisory
x_refsource_HP
20080130 rPSA-2008-0032-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs
mailing-list
x_refsource_BUGTRAQ
ADV-2008-0703
vdb-entry
x_refsource_VUPEN
MDVSA-2008:021
vendor-advisory
x_refsource_MANDRIVA
ADV-2008-0924
vdb-entry
x_refsource_VUPEN
28718
third-party-advisory
x_refsource_SECUNIA
200153
vendor-advisory
x_refsource_SUNALERT
RHSA-2008:0029
vendor-advisory
x_refsource_REDHAT
28584
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11045
vdb-entry
signature
x_refsource_OVAL
[4.1] 20080208 012: SECURITY FIX: February 8, 2008
vendor-advisory
x_refsource_OPENBSD
28941
third-party-advisory
x_refsource_SECUNIA
28592
third-party-advisory
x_refsource_SECUNIA
27350
vdb-entry
x_refsource_BID
HPSBUX02381
vendor-advisory
x_refsource_HP
http://support.avaya.com/elmodocs2/security/ASA-2008-039.htm
x_refsource_CONFIRM
29420
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:022
vendor-advisory
x_refsource_MANDRIVA
APPLE-SA-2008-03-18
vendor-advisory
x_refsource_APPLE
xorg-evi-bo(39763)
vdb-entry
x_refsource_XF
30161
third-party-advisory
x_refsource_SECUNIA
GLSA-200805-07
vendor-advisory
x_refsource_GENTOO
RHSA-2008:0030
vendor-advisory
x_refsource_REDHAT
28543
third-party-advisory
x_refsource_SECUNIA
28273
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0031
vendor-advisory
x_refsource_REDHAT
28550
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0497
vdb-entry
x_refsource_VUPEN
http://bugs.gentoo.org/show_bug.cgi?id=204362
x_refsource_CONFIRM
27353
vdb-entry
x_refsource_BID
MDVSA-2008:023
vendor-advisory
x_refsource_MANDRIVA
28885
third-party-advisory
x_refsource_SECUNIA
103200
vendor-advisory
x_refsource_SUNALERT
MDVSA-2008:025
vendor-advisory
x_refsource_MANDRIVA
USN-571-1
vendor-advisory
x_refsource_UBUNTU
GLSA-200804-05
vendor-advisory
x_refsource_GENTOO
28535
third-party-advisory
x_refsource_SECUNIA
ADV-2008-3000
vdb-entry
x_refsource_VUPEN
http://docs.info.apple.com/article.html?artnum=307562
x_refsource_CONFIRM
[xorg] 20080117 X.Org security advisory: multiple vulnerabilities in the X server
mailing-list
x_refsource_MLIST
32545
third-party-advisory
x_refsource_SECUNIA
28838
third-party-advisory
x_refsource_SECUNIA
1019232
vdb-entry
x_refsource_SECTRACK
https://issues.rpath.com/browse/RPL-2010
x_refsource_CONFIRM
[4.2] 20080208 006: SECURITY FIX: February 8, 2008
vendor-advisory
x_refsource_OPENBSD
28539
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2008:003
vendor-advisory
x_refsource_SUSE
28616
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-0760
vendor-advisory
x_refsource_FEDORA
28536
third-party-advisory
x_refsource_SECUNIA
28693
third-party-advisory
x_refsource_SECUNIA
GLSA-200801-09
vendor-advisory
x_refsource_GENTOO
ADV-2008-0179
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now