- Description
- Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 6.4
- Exploitability score
- 3.1
- Vector string
- AV:L/AC:L/Au:S/C:P/I:P/A:P
- nvd@nist.gov
- CWE-119
- Hype score
- Not currently trending
- Red HatThis flaw was fixed for Red Hat Enterprise Linux 4 in RHSA-2007-0898: https://rhn.redhat.com/errata/RHSA-2007-0898.html Red Hat Enterprise Linux 5 is not affected by this flaw. More information can be found here: https://bugzilla.redhat.com/show_bug.cgi?id=285991 Red Hat Enterprise Linux 2.1 and 3 do not support the composite extension and are not vulnerable to this flaw.
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:x.org:xorg-server:1.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4053574D-9D8E-488A-8D9E-ABC29A83BFAB"
},
{
"criteria": "cpe:2.3:a:x.org:xorg-server:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA6927F5-EF22-4637-8024-E30D831D4D9C"
},
{
"criteria": "cpe:2.3:a:x.org:xorg-server:1.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7C6C17BD-FD3F-4FDB-AE66-CFBE22CF907F"
},
{
"criteria": "cpe:2.3:a:x.org:xorg-server:1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89BB6C50-D5BC-4D67-AB38-EDDD8A78C853"
},
{
"criteria": "cpe:2.3:a:x.org:xorg-server:1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "65E22966-0329-463F-951C-AE938F629D15"
}
],
"operator": "OR"
}
]
}
]