Integer Overflow Vulnerabilities in X.Org Xserver Impacting Multiple Releases
CVE-2007-6429

Currently unrated

Key Information:

Vendor: X.org
Status: Xserver; Evi; Mit-shm
Vendor: CVE Published:; 18 January 2008

What is CVE-2007-6429?

Multiple integer overflow vulnerabilities in earlier versions of X.Org Xserver allow context-dependent attackers to execute arbitrary code. Attackers can exploit these vulnerabilities through specially crafted GetVisualInfo requests that improperly treat 32-bit values for memory allocation by the EVI extension. Additionally, requests containing incorrect values related to pixmap size can lead to vulnerabilities in the management of shared memory by the MIT-SHM extension, facilitating further attacks.

References

http://secunia.com/advisories/28542

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/29139

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/27336

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2008
Vulnerability Reserved
Dec 18, 2007

X.org

What is CVE-2007-6429?

References

Timeline