Buffer Overflow Vulnerability in X.org X11 Server Affecting Various Linux Distributions
CVE-2007-4730

Currently unrated

Key Information:

Vendor: X.org
Status: Xorg-server
Vendor: CVE Published:; 11 September 2007

What is CVE-2007-4730?

A buffer overflow exists in the compNewPixmap function of the Composite extension in the X.org X11 server prior to version 1.4. This flaw allows local users to copy data from a large pixel depth pixmap into a smaller one, potentially enabling them to execute arbitrary code on the system. If exploited, this could lead to unauthorized access and control over affected systems.

References

http://www.novell.com/linux/security/advisories/2007_54_x...

vendor-advisoryx_refsource_SUSE

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://lists.freedesktop.org/archives/xorg-announce/2007-...

mailing-listx_refsource_MLIST

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2007
Vulnerability Reserved
Sep 5, 2007