9.3

CVE-2007-1667

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
X.OrgLibx11 Version <= 1.0.2
DebianDebian Linux Version3.1
DebianDebian Linux Version4.0
CanonicalUbuntu Linux Version6.06
CanonicalUbuntu Linux Version6.10
CanonicalUbuntu Linux Version7.04
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.61% 0.905
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/33937
Broken Link
http://support.apple.com/kb/HT3438
Third Party Advisory
http://secunia.com/advisories/30161
Broken Link
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml
Third Party Advisory
http://secunia.com/advisories/25072
Broken Link
http://www.novell.com/linux/security/advisories/2007_8_sr.html
Third Party Advisory
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=414045
Third Party Advisory
http://issues.foresightlinux.org/browse/FL-223
Broken Link
http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html
Third Party Advisory
Mailing List
http://rhn.redhat.com/errata/RHSA-2007-0125.html
Third Party Advisory
http://secunia.com/advisories/24739
Broken Link
http://secunia.com/advisories/24741
Broken Link
http://secunia.com/advisories/24745
Broken Link
http://secunia.com/advisories/24756
Broken Link
http://secunia.com/advisories/24758
Broken Link
http://secunia.com/advisories/24765
Broken Link
http://secunia.com/advisories/24771
Broken Link
http://secunia.com/advisories/24791
Broken Link
http://secunia.com/advisories/24953
Broken Link
http://secunia.com/advisories/24975
Broken Link
http://secunia.com/advisories/25004
Broken Link
http://secunia.com/advisories/25112
Broken Link
http://secunia.com/advisories/25131
Broken Link
http://secunia.com/advisories/25305
Broken Link
http://secunia.com/advisories/25992
Broken Link
http://secunia.com/advisories/26177
Broken Link
http://secunia.com/advisories/36260
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200705-06.xml
Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102888-1
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2007-176.htm
Third Party Advisory
http://www.debian.org/security/2007/dsa-1294
Third Party Advisory
http://www.debian.org/security/2009/dsa-1858
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:079
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:147
Broken Link
http://www.novell.com/linux/security/advisories/2007_27_x.html
Broken Link
http://www.openbsd.org/errata39.html#021_xorg
Third Party Advisory
http://www.openbsd.org/errata40.html#011_xorg
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0126.html
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0157.html
Third Party Advisory
http://www.securityfocus.com/archive/1/464686/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/archive/1/464816/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/23300
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1017864
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/usn-453-1
Third Party Advisory
http://www.ubuntu.com/usn/usn-453-2
Third Party Advisory
http://www.ubuntu.com/usn/usn-481-1
Broken Link
http://www.vupen.com/english/advisories/2007/1217
Broken Link
http://www.vupen.com/english/advisories/2007/1531
Third Party Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=231684
Third Party Advisory
Issue Tracking
https://issues.rpath.com/browse/RPL-1211
Broken Link
https://issues.rpath.com/browse/RPL-1213
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1693
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9776
Broken Link