[#FL-223] various integer overflow vulnerabilites in xserver, libX11 and libXfont and freetype - FITS - Foresight Issue Tracking System

Issue Details (XML | Word | Printable)

Key:	FL-223
Type:	Bug
Status:	Resolved
Resolution:	Fixed
Priority:	Major
Assignee:	Jonathan Smith
Reporter:	Jonathan Smith
Votes:	0
Watchers:	0

Operations

If you were logged in you would be able to see more operations.

Foresight Linux

various integer overflow vulnerabilites in xserver, libX11 and libXfont and freetype

Created: 04/Apr/07 07:21 PM Updated: 23/Apr/07 04:53 PM

Component/s:

None

Affects Version/s:

None

Fix Version/s:

None

Security Level:

Public (Everyone can see this issue)

Time Tracking:

Not Specified

Description

see http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html for info

note: most distros are fixing a similar issue in freetype in the same release, so here's the info on that:

http://sourceforge.net/project/shownotes.php?group_id=3157&release_id=498954

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1351
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1667

All

Comments

Work Log

Change History

Sort Order:

Ascending order - Click to sort in descending order

There are no comments yet on this issue.