11 matches found
SUSE CVE-2007-6429
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...
SuSE9 Security Update : XFree86-Xnest (YOU Patch Number 12043)
This update fixes various Xserver security issues. - File existence disclosure vulnerability. CVE-2007-5958 - XInput Extension Memory Corruption Vulnerability IDEF2888 CVE-2007-6427. - TOG-CUP Extension Memory Corruption Vulnerability IDEF2901 CVE-2007-6428. - EVI Extension Integer Overflow...
SuSE 10 Security Update : xorg-x11-Xnest (ZYPP Patch Number 4875)
This update fixes various Xserver security issues. File existence disclosure vulnerability. CVE-2007-5958 XInput Extension Memory Corruption Vulnerability IDEF2888 CVE-2007-6427. TOG-CUP Extension Memory Corruption Vulnerability IDEF2901 CVE-2007-6428. EVI Extension Integer Overflow Vulnerability...
X.Org X server and Xfont library: Multiple vulnerabilities
Background The X Window System is a graphical windowing system based on a client/server model. Description regenrecht reported multiple vulnerabilities in various X server extension via iDefense: The XFree86-Misc extension does not properly sanitize a parameter within a PassMessage request,...
CVE-2007-6429
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...
CVE-2007-6429
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...
CVE-2007-6429
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...
CVE-2007-6429
CVE-2007-6429 is a vulnerability in the X.Org Xserver (pre-1.4.1) involving integer overflows in the EVI and MIT-SHM extensions that could lead to arbitrary code execution. The initial description indicates memory allocation based on a 32-bit value in GetVisualInfo and shared-memory management de...
xfree86: integer overflow in EVI extension
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...
xfree86: integer overflow in EVI extension
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...
xfree86: integer overflow in EVI extension
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via 1 a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or 2 a request containing valu...