Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-1667HistoryMar 24, 2007 - 9:19 p.m.
CVE-2007-1667
2007-03-2421:19:00
Debian Security Bug Tracker
security-tracker.debian.org
17
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.069
Percentile
94.0%
Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | graphicsmagick | < 1.1.7-14 | graphicsmagick_1.1.7-14_all.deb |
| Debian | 11 | all | graphicsmagick | < 1.1.7-14 | graphicsmagick_1.1.7-14_all.deb |
| Debian | 999 | all | graphicsmagick | < 1.1.7-14 | graphicsmagick_1.1.7-14_all.deb |
| Debian | 13 | all | graphicsmagick | < 1.1.7-14 | graphicsmagick_1.1.7-14_all.deb |
| Debian | 12 | all | imagemagick | < 7:6.2.4.5.dfsg1-1 | imagemagick_7:6.2.4.5.dfsg1-1_all.deb |
| Debian | 11 | all | imagemagick | < 7:6.2.4.5.dfsg1-1 | imagemagick_7:6.2.4.5.dfsg1-1_all.deb |
| Debian | 999 | all | imagemagick | < 7:6.2.4.5.dfsg1-1 | imagemagick_7:6.2.4.5.dfsg1-1_all.deb |
| Debian | 13 | all | imagemagick | < 7:6.2.4.5.dfsg1-1 | imagemagick_7:6.2.4.5.dfsg1-1_all.deb |
| Debian | 12 | all | libx11 | < 2:1.0.3-7 | libx11_2:1.0.3-7_all.deb |
| Debian | 11 | all | libx11 | < 2:1.0.3-7 | libx11_2:1.0.3-7_all.deb |
Related
securityvulns
securityvulns
X.Org libx11 library buffer overflow
2007-03-25 00:00:00
ubuntucve
ubuntucve
CVE-2007-1667
2007-03-24 00:00:00
CVE-2007-1797
2007-04-02 00:00:00
prion
prion
Integer overflow
2007-03-24 21:19:00
Integer overflow
2007-04-02 22:19:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: libX11-1.0.3-7.fc6
2007-04-10 16:51:20
[SECURITY] Fedora Core 5 Update: libX11-1.0.0-4.fc5
2007-04-10 16:52:48
openvas
openvas
Oracle: Security Advisory (ELSA-2007-0157)
2015-10-08 00:00:00
Fedora Update for libX11 FEDORA-2007-426
2009-02-27 00:00:00
Ubuntu Update for rdesktop regression USN-453-2
2009-03-23 00:00:00
gentoo
gentoo
X.Org X11 library: Multiple integer overflows
2007-05-05 00:00:00
nessus
nessus
Oracle Linux 5 : libX11 / xorg-x11-apps (ELSA-2007-0157)
2013-07-12 00:00:00
Fedora Core 5 : libX11-1.0.0-4.fc5 (2007-427)
2007-04-12 00:00:00
Ubuntu 6.06 LTS / 6.10 : libx11 vulnerability (USN-453-1)
2007-11-10 00:00:00
redhat
redhat
(RHSA-2007:0157) Moderate: xorg-x11-apps and libX11 security update
2007-04-16 00:00:00
(RHSA-2007:0125) Important: XFree86 security update
2007-04-03 00:00:00
(RHSA-2007:0126) Important: xorg-x11 security update
2007-04-03 00:00:00
oraclelinux
oraclelinux
Moderate: xorg-x11-apps/libX11 security updates
2007-06-26 00:00:00
Important: xorg-x11 security update
2007-04-04 00:00:00
ubuntu
ubuntu
X.org vulnerability
2007-04-18 00:00:00
ImageMagick vulnerabilities
2007-07-10 00:00:00
centos
centos
libX11, xorg security update
2007-04-17 17:04:07
XFree86 security update
2007-04-03 22:05:23
XFree86 security update
2007-04-04 05:46:38
veracode
veracode
Information Disclosure
2020-04-10 00:13:16
nvd
nvd
CVE-2007-1667
2007-03-24 21:19:00
CVE-2007-1797
2007-04-02 22:19:00
cvelist
cvelist
CVE-2007-1667
2007-03-24 21:00:00
CVE-2007-1797
2007-04-02 22:00:00
cve
cve
CVE-2007-1667
2007-03-24 21:19:00
CVE-2007-1797
2007-04-02 22:19:00
debiancve
debiancve
CVE-2007-1797
2007-04-02 22:19:00
debian
debian
[SECURITY] [DSA 1294-1] New xfree86 packages fix several vulnerabilities
2007-05-17 21:22:02
[SECURITY] [DSA 1858-1] New imagemagick packages fix several vulnerabilities
2009-08-10 17:05:37
suse
suse
local privilege escalation in XFree86, Xorg
2007-04-20 16:38:35
osv
osv
xfree86
2007-05-17 00:00:00
imagemagick - several vulnerabilities
2009-08-10 00:00:00
graphicsmagick - several
2009-10-07 00:00:00
vmware
vmware
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.069
Percentile
94.0%
Related for DEBIANCVE:CVE-2007-1667