Lucene search
UbuntuUSN-514-1HistorySep 18, 2007 - 12:00 a.m.
X.org vulnerability
2007-09-1800:00:00
ubuntu.com
33
4.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
7 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
Releases
- Ubuntu 6.06
Packages
- xorg-server -
Details
Aaron Plattner discovered that the Composite extension did not correctly
calculate the size of buffers when copying between different bit depths.
An authenticated user could exploit this to execute arbitrary code with
root privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 6.06 | noarch | xserver-xorg-core | < 1:1.0.2-0ubuntu10.7 | UNKNOWN |
| Ubuntu | 6.06 | noarch | xdmx | < 1:1.0.2-0ubuntu10.7 | UNKNOWN |
| Ubuntu | 6.06 | noarch | xdmx-tools | < 1:1.0.2-0ubuntu10.7 | UNKNOWN |
| Ubuntu | 6.06 | noarch | xnest | < 1:1.0.2-0ubuntu10.7 | UNKNOWN |
| Ubuntu | 6.06 | noarch | xserver-xorg-dev | < 1:1.0.2-0ubuntu10.7 | UNKNOWN |
| Ubuntu | 6.06 | noarch | xvfb | < 1:1.0.2-0ubuntu10.7 | UNKNOWN |
References
Related
openvas
openvas
Gentoo Security Advisory GLSA 200710-16 (X.Org)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200710-16 (X.Org)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1372-1)
2008-01-17 00:00:00
nessus
nessus
Scientific Linux Security Update : xorg-x11 on SL4.x i386/x86_64
2012-08-01 00:00:00
Debian DSA-1372-1 : xorg-server - buffer overflow
2007-09-14 00:00:00
Oracle Linux 4 : xorg-x11 (ELSA-2007-0898)
2013-07-12 00:00:00
osv
osv
xorg-server - privilege escalation
2007-09-09 00:00:00
gentoo
gentoo
X.Org X server: Composite local privilege escalation
2007-10-14 00:00:00
centos
centos
xorg security update
2007-09-19 20:09:53
debian
debian
[SECURITY] [DSA 1372-1] New xorg-server packages fix privilege escalation
2007-09-09 13:38:35
prion
prion
Buffer overflow
2007-09-11 19:17:00
cvelist
cvelist
CVE-2007-4730
2007-09-11 19:00:00
securityvulns
securityvulns
X.Org X server composite extention buffer overflow
2007-09-13 00:00:00
oraclelinux
oraclelinux
Moderate: xorg-x11 security update
2007-09-19 00:00:00
debiancve
debiancve
CVE-2007-4730
2007-09-11 19:17:00
cve
cve
CVE-2007-4730
2007-09-11 19:17:00
redhat
redhat
(RHSA-2007:0898) Moderate: xorg-x11 security update
2007-09-19 00:00:00
ubuntucve
ubuntucve
CVE-2007-4730
2007-09-11 00:00:00
nvd
nvd
CVE-2007-4730
2007-09-11 19:17:00
suse
suse
local privilege escalation in XOrg
2007-10-12 16:41:18
4.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
7 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
Related for USN-514-1