Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-1351HistoryApr 06, 2007 - 1:19 a.m.
CVE-2007-1351
2007-04-0601:19:00
Debian Security Bug Tracker
security-tracker.debian.org
11
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.05 Low
EPSS
Percentile
92.8%
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | freetype | < 2.3.5-1 | freetype_2.3.5-1_all.deb |
| Debian | 11 | all | freetype | < 2.3.5-1 | freetype_2.3.5-1_all.deb |
| Debian | 10 | all | freetype | < 2.3.5-1 | freetype_2.3.5-1_all.deb |
| Debian | 999 | all | freetype | < 2.3.5-1 | freetype_2.3.5-1_all.deb |
| Debian | 13 | all | freetype | < 2.3.5-1 | freetype_2.3.5-1_all.deb |
| Debian | 12 | all | libxfont | < 1:1.2.2-2 | libxfont_1:1.2.2-2_all.deb |
| Debian | 11 | all | libxfont | < 1:1.2.2-2 | libxfont_1:1.2.2-2_all.deb |
| Debian | 10 | all | libxfont | < 1:1.2.2-2 | libxfont_1:1.2.2-2_all.deb |
| Debian | 999 | all | libxfont | < 1:1.2.2-2 | libxfont_1:1.2.2-2_all.deb |
| Debian | 13 | all | libxfont | < 1:1.2.2-2 | libxfont_1:1.2.2-2_all.deb |
Related
openvas
openvas
Mandriva Update for freetype2 MDKSA-2007:081 (freetype2)
2009-04-09 00:00:00
Slackware Advisory SSA:2007-109-01 freetype
2012-09-11 00:00:00
Gentoo Security Advisory GLSA 200705-02 (freetype)
2008-09-24 00:00:00
nessus
nessus
Debian DSA-1454-1 : freetype - integer overflow
2008-01-08 00:00:00
openSUSE 10 Security Update : freetype2 (freetype2-3066)
2007-10-17 00:00:00
CentOS 3 / 4 / 5 : freetype (CESA-2007:0150)
2007-04-19 00:00:00
prion
prion
Integer overflow
2007-04-06 01:19:00
Design/Logic Flaw
2007-06-26 18:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:15:13
redhat
redhat
(RHSA-2007:0150) Moderate: freetype security update
2007-04-16 00:00:00
(RHSA-2007:0132) Important: libXfont security update
2007-04-03 00:00:00
(RHSA-2007:0125) Important: XFree86 security update
2007-04-03 00:00:00
ubuntucve
ubuntucve
CVE-2007-1351
2007-04-06 00:00:00
CVE-2007-3408
2007-06-26 00:00:00
slackware
slackware
[slackware-security] freetype
2007-04-20 02:55:00
debian
debian
[SECURITY] [DSA 1454-1] New freetype packages fix arbitrary code execution
2008-01-07 19:48:43
[SECURITY] [DSA 1294-1] New xfree86 packages fix several vulnerabilities
2007-05-17 00:00:00
gentoo
gentoo
FreeType: User-assisted execution of arbitrary code
2007-05-01 00:00:00
LibXfont, TightVNC: Multiple vulnerabilities
2007-05-08 00:00:00
securityvulns
securityvulns
centos
centos
freetype security update
2007-04-16 12:48:19
XFree86 security update
2007-04-03 22:05:23
XFree86 security update
2007-04-04 05:46:38
cve
cve
CVE-2007-1351
2007-04-06 01:19:00
CVE-2007-3408
2007-06-26 18:30:00
osv
osv
freetype - arbitrary code execution
2008-01-07 00:00:00
xfree86
2007-05-17 00:00:00
cvelist
cvelist
CVE-2007-1351
2007-04-06 01:00:00
oraclelinux
oraclelinux
Important: XFree86 security update
2007-04-04 00:00:00
Important: libXfont security update
2007-06-26 00:00:00
Moderate: freetype security update
2007-04-16 00:00:00
ubuntu
ubuntu
X.org vulnerabilities
2007-04-03 00:00:00
debiancve
debiancve
CVE-2007-3408
2007-06-26 18:30:00
suse
suse
local privilege escalation in XFree86, Xorg
2007-04-20 16:38:35
vmware
vmware
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.05 Low
EPSS
Percentile
92.8%
Related for DEBIANCVE:CVE-2007-1351