CVE - CVE-2007-6429

CVE-ID
CVE-2007-6429	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
APPLE:APPLE-SA-2008-03-18 URL:http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html BID:27336 URL:http://www.securityfocus.com/bid/27336 BID:27350 URL:http://www.securityfocus.com/bid/27350 BID:27353 URL:http://www.securityfocus.com/bid/27353 BUGTRAQ:20080130 rPSA-2008-0032-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs URL:http://www.securityfocus.com/archive/1/487335/100/0/threaded CONFIRM:http://bugs.gentoo.org/show_bug.cgi?id=204362 CONFIRM:http://docs.info.apple.com/article.html?artnum=307562 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2008-039.htm CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2008-078.htm CONFIRM:http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX61&path=/200802/SECURITY/20080227/datafile112539&label=AIX%20X%20server%20multiple%20vulnerabilities CONFIRM:https://issues.rpath.com/browse/RPL-2010 DEBIAN:DSA-1466 URL:http://www.debian.org/security/2008/dsa-1466 FEDORA:FEDORA-2008-0760 URL:https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00641.html FEDORA:FEDORA-2008-0831 URL:https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00704.html GENTOO:GLSA-200801-09 URL:http://security.gentoo.org/glsa/glsa-200801-09.xml GENTOO:GLSA-200804-05 URL:http://security.gentoo.org/glsa/glsa-200804-05.xml GENTOO:GLSA-200805-07 URL:http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml HP:HPSBUX02381 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01543321 HP:SSRT080083 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01543321 IDEFENSE:20080117 Multiple Vendor X Server EVI and MIT-SHM Extensions Integer Overflow Vulnerabilities URL:http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=645 MANDRIVA:MDVSA-2008:021 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:021~~ (Obsolete source) MANDRIVA:MDVSA-2008:022 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:022~~ (Obsolete source) MANDRIVA:MDVSA-2008:023 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:023~~ (Obsolete source) MANDRIVA:MDVSA-2008:025 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:025~~ (Obsolete source) MLIST:[xorg] 20080117 X.Org security advisory: multiple vulnerabilities in the X server URL:http://lists.freedesktop.org/archives/xorg/2008-January/031918.html OPENBSD:[4.1] 20080208 012: SECURITY FIX: February 8, 2008 URL:http://www.openbsd.org/errata41.html#012_xorg OPENBSD:[4.2] 20080208 006: SECURITY FIX: February 8, 2008 URL:http://www.openbsd.org/errata42.html#006_xorg OVAL:oval:org.mitre.oval:def:11045 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11045 REDHAT:RHSA-2008:0029 URL:http://www.redhat.com/support/errata/RHSA-2008-0029.html REDHAT:RHSA-2008:0030 URL:http://www.redhat.com/support/errata/RHSA-2008-0030.html REDHAT:RHSA-2008:0031 URL:http://www.redhat.com/support/errata/RHSA-2008-0031.html SECTRACK:1019232 URL:http://securitytracker.com/id?1019232 SECUNIA:28273 URL:http://secunia.com/advisories/28273 SECUNIA:28532 URL:http://secunia.com/advisories/28532 SECUNIA:28535 URL:http://secunia.com/advisories/28535 SECUNIA:28536 URL:http://secunia.com/advisories/28536 SECUNIA:28539 URL:http://secunia.com/advisories/28539 SECUNIA:28540 URL:http://secunia.com/advisories/28540 SECUNIA:28542 URL:http://secunia.com/advisories/28542 SECUNIA:28543 URL:http://secunia.com/advisories/28543 SECUNIA:28550 URL:http://secunia.com/advisories/28550 SECUNIA:28584 URL:http://secunia.com/advisories/28584 SECUNIA:28592 URL:http://secunia.com/advisories/28592 SECUNIA:28616 URL:http://secunia.com/advisories/28616 SECUNIA:28693 URL:http://secunia.com/advisories/28693 SECUNIA:28718 URL:http://secunia.com/advisories/28718 SECUNIA:28838 URL:http://secunia.com/advisories/28838 SECUNIA:28843 URL:http://secunia.com/advisories/28843 SECUNIA:28885 URL:http://secunia.com/advisories/28885 SECUNIA:28941 URL:http://secunia.com/advisories/28941 SECUNIA:29139 URL:http://secunia.com/advisories/29139 SECUNIA:29420 URL:http://secunia.com/advisories/29420 SECUNIA:29622 URL:http://secunia.com/advisories/29622 SECUNIA:29707 URL:http://secunia.com/advisories/29707 SECUNIA:30161 URL:http://secunia.com/advisories/30161 SECUNIA:32545 URL:http://secunia.com/advisories/32545 SUNALERT:103200 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-103200-1~~ (Obsolete source) SUNALERT:200153 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-200153-1~~ (Obsolete source) SUSE:SUSE-SA:2008:003 URL:http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00004.html SUSE:SUSE-SR:2008:003 URL:http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html SUSE:SUSE-SR:2008:008 URL:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html UBUNTU:USN-571-1 URL:https://usn.ubuntu.com/571-1/ VUPEN:ADV-2008-0179 URL:~~http://www.vupen.com/english/advisories/2008/0179~~ (Obsolete source) VUPEN:ADV-2008-0184 URL:~~http://www.vupen.com/english/advisories/2008/0184~~ (Obsolete source) VUPEN:ADV-2008-0497 URL:~~http://www.vupen.com/english/advisories/2008/0497/references~~ (Obsolete source) VUPEN:ADV-2008-0703 URL:~~http://www.vupen.com/english/advisories/2008/0703~~ (Obsolete source) VUPEN:ADV-2008-0924 URL:~~http://www.vupen.com/english/advisories/2008/0924/references~~ (Obsolete source) VUPEN:ADV-2008-3000 URL:~~http://www.vupen.com/english/advisories/2008/3000~~ (Obsolete source) XF:xorg-evi-bo(39763) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/39763 XF:xorg-mitshm-overflow(39764) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/39764
Assigning CNA
MITRE Corporation
Date Record Created
20071218	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20071218)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)