3 matches found
CVE-2007-6427
CVE-2007-6427 affects the X.Org Xserver (XInput-Misc extension) prior to version 1.4.1. The root cause is missing input sanitising within the XInput‑Misc code, which can lead to local privilege escalation. In public advisories, this is described as a vulnerability in the XInput‑Misc path that all...
CVE-2009-3620
CVE-2009-3620 affects the ATI Rage 128 (r128) driver in the Linux kernel, where the driver fails to properly verify Concurrent Command Engine (CCE) state initialization. This local vulnerability can cause a NULL pointer dereference and system crash (DoS) and may allow privilege escalation via uns...
CVE-2007-1285
CVE-2007-1285 is a denial-of-service flaw in the Zend Engine: processing a deeply nested PHP array can cause stack exhaustion and crash the interpreter. Affected: PHP 4.x before 4.4.7 and PHP 5.x before 5.2.2. Exploitation: remote via crafted input; outcome is a crash/DoS. Remediation: apply patc...