CVE-2007-1352
published 2007-04-06CVE-2007-1352: Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long…
low3.8CVSS 3.1
AVAACMAuSCNIPAP
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
Affected
27 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libxfont | < libxfont 1:1.2.2-2 (bookworm) | libxfont 1:1.2.2-2 (bookworm) |
| mandrakesoft | mandrake_multi_network_firewall | — | — |
| openbsd | openbsd | — | — |
| openbsd | openbsd | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | fedora_core | — | — |
| redhat | linux | — | — |
| redhat | linux_advanced_workstation | — | — |
| rpath | linux | — | — |
| slackware | slackware_linux | — | — |
| slackware | slackware_linux | — | — |
| slackware | slackware_linux | — | — |
| turbolinux | turbolinux_desktop | — | — |
| ubuntu | ubuntu_linux | — | — |
| ubuntu | ubuntu_linux | — | — |
| ubuntu | ubuntu_linux | — | — |
| ubuntu | ubuntu_linux | — | — |
| x.org | libxfont | — | — |
| x.org | libxfont | >= 0 < 1:1.2.2-2 | 1:1.2.2-2 |
| x.org | libxfont | >= 0 < 1:1.2.2-2 | 1:1.2.2-2 |
CVSS provenance
nvd3.8LOWAV:A/AC:M/Au:S/C:N/I:P/A:P
osv3.8LOW