Lucene search
Ubuntu.comUB:CVE-2007-1351HistoryApr 06, 2007 - 12:00 a.m.
CVE-2007-1351
2007-04-0600:00:00
ubuntu.com
ubuntu.com
8
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.05 Low
EPSS
Percentile
92.8%
Integer overflow in the bdfReadCharacters function in bdfread.c in (1)
X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows
remote authenticated users to execute arbitrary code via crafted BDF fonts,
which result in a heap overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | freetype | < 2.1.10-1ubuntu2.4 | UNKNOWN |
| ubuntu | 6.10 | noarch | freetype | < 2.2.1-5ubuntu0.2 | UNKNOWN |
| ubuntu | 7.04 | noarch | freetype | < 2.2.1-5ubuntu1.1 | UNKNOWN |
| ubuntu | 6.06 | noarch | libxfont | < 1.0.0-0ubuntu3.3 | UNKNOWN |
| ubuntu | 6.10 | noarch | libxfont | < 1.2.0-0ubuntu3.1 | UNKNOWN |
| ubuntu | 7.04 | noarch | libxfont | < 1.2.7-1ubuntu1 | UNKNOWN |
Related
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:15:13
nessus
nessus
CentOS 3 / 4 / 5 : freetype (CESA-2007:0150)
2007-04-19 00:00:00
RHEL 3 / 4 / 5 : freetype (RHSA-2007:0150)
2007-04-19 00:00:00
SuSE 10 Security Update : freetype2 (ZYPP Patch Number 3067)
2007-12-13 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200705-02 (freetype)
2008-09-24 00:00:00
Debian Security Advisory DSA 1454-1 (freetype)
2008-01-17 00:00:00
SLES9: Security update for freetype2
2009-10-10 00:00:00
redhat
redhat
(RHSA-2007:0150) Moderate: freetype security update
2007-04-16 00:00:00
(RHSA-2007:0132) Important: libXfont security update
2007-04-03 00:00:00
(RHSA-2007:0126) Important: xorg-x11 security update
2007-04-03 00:00:00
slackware
slackware
[slackware-security] freetype
2007-04-20 02:55:00
debian
debian
[SECURITY] [DSA 1454-1] New freetype packages fix arbitrary code execution
2008-01-07 19:48:43
[SECURITY] [DSA 1294-1] New xfree86 packages fix several vulnerabilities
2007-05-17 00:00:00
gentoo
gentoo
FreeType: User-assisted execution of arbitrary code
2007-05-01 00:00:00
LibXfont, TightVNC: Multiple vulnerabilities
2007-05-08 00:00:00
securityvulns
securityvulns
centos
centos
freetype security update
2007-04-16 12:48:19
XFree86 security update
2007-04-04 05:46:38
xorg security update
2007-04-04 00:24:46
cve
cve
CVE-2007-1351
2007-04-06 01:19:00
CVE-2007-3408
2007-06-26 18:30:00
osv
osv
freetype - arbitrary code execution
2008-01-07 00:00:00
xfree86
2007-05-17 00:00:00
cvelist
cvelist
CVE-2007-1351
2007-04-06 01:00:00
prion
prion
Integer overflow
2007-04-06 01:19:00
Design/Logic Flaw
2007-06-26 18:30:00
debiancve
debiancve
CVE-2007-1351
2007-04-06 01:19:00
CVE-2007-3408
2007-06-26 18:30:00
oraclelinux
oraclelinux
Important: XFree86 security update
2007-04-04 00:00:00
Important: libXfont security update
2007-06-26 00:00:00
Moderate: freetype security update
2007-04-16 00:00:00
ubuntu
ubuntu
X.org vulnerabilities
2007-04-03 00:00:00
ubuntucve
ubuntucve
CVE-2007-3408
2007-06-26 00:00:00
suse
suse
local privilege escalation in XFree86, Xorg
2007-04-20 16:38:35
vmware
vmware
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.05 Low
EPSS
Percentile
92.8%
Related for UB:CVE-2007-1351