ByteOS Network

CVE Vulnerability Details :

CVE-2007-4990

PUBLISHED

More Info Official Page

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-05 Oct, 2007 | 21:00

Updated At-07 Aug, 2024 | 15:17

▼CVE Numbering Authority (CNA)

The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.novell.com/linux/security/advisories/2007_54_xorg.html	vendor-advisory x_refsource_SUSE
http://www.securitytracker.com/id?1018763	vdb-entry x_refsource_SECTRACK
http://secunia.com/advisories/28542	third-party-advisory x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200642-1	vendor-advisory x_refsource_SUNALERT
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html	vendor-advisory x_refsource_FEDORA
http://www.securityfocus.com/archive/1/481432/100/0/threaded	mailing-list x_refsource_BUGTRAQ
http://bugs.freedesktop.org/show_bug.cgi?id=12299	x_refsource_CONFIRM
http://secunia.com/advisories/28514	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/27052	third-party-advisory x_refsource_SECUNIA
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602	third-party-advisory x_refsource_IDEFENSE
http://secunia.com/advisories/27060	third-party-advisory x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2008/0924/references	vdb-entry x_refsource_VUPEN
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725	vendor-advisory x_refsource_HP
http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html	mailing-list x_refsource_MLIST
http://www.redhat.com/support/errata/RHSA-2008-0029.html	vendor-advisory x_refsource_REDHAT
http://secunia.com/advisories/28004	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/27240	third-party-advisory x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-1756	x_refsource_CONFIRM
http://secunia.com/advisories/29420	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/27040	third-party-advisory x_refsource_SECUNIA
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	vendor-advisory x_refsource_APPLE
http://secunia.com/advisories/27176	third-party-advisory x_refsource_SECUNIA
http://security.gentoo.org/glsa/glsa-200710-11.xml	vendor-advisory x_refsource_GENTOO
http://secunia.com/advisories/27228	third-party-advisory x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2007/3467	vdb-entry x_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2008-0030.html	vendor-advisory x_refsource_REDHAT
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1	vendor-advisory x_refsource_SUNALERT
http://www.vupen.com/english/advisories/2008/0149	vdb-entry x_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDKSA-2007:210	vendor-advisory x_refsource_MANDRIVA
http://www.securityfocus.com/bid/25898	vdb-entry x_refsource_BID
http://bugs.gentoo.org/show_bug.cgi?id=194606	x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2007/3338	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/27560	third-party-advisory x_refsource_SECUNIA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11599	vdb-entry signature x_refsource_OVAL
http://docs.info.apple.com/article.html?artnum=307562	x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2007/3337	vdb-entry x_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/36920	vdb-entry x_refsource_XF
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725	vendor-advisory x_refsource_HP
http://secunia.com/advisories/28536	third-party-advisory x_refsource_SECUNIA

Hyperlink: http://www.novell.com/linux/security/advisories/2007_54_xorg.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.securitytracker.com/id?1018763

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://secunia.com/advisories/28542

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200642-1

Resource:

vendor-advisory

x_refsource_SUNALERT

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://www.securityfocus.com/archive/1/481432/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://bugs.freedesktop.org/show_bug.cgi?id=12299

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/28514

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/27052

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602

Resource:

third-party-advisory

x_refsource_IDEFENSE

Hyperlink: http://secunia.com/advisories/27060

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.vupen.com/english/advisories/2008/0924/references

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0029.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://secunia.com/advisories/28004

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/27240

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://issues.rpath.com/browse/RPL-1756

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/29420

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/27040

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

Hyperlink: http://secunia.com/advisories/27176

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://security.gentoo.org/glsa/glsa-200710-11.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://secunia.com/advisories/27228

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.vupen.com/english/advisories/2007/3467

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0030.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1

Resource:

vendor-advisory

x_refsource_SUNALERT

Hyperlink: http://www.vupen.com/english/advisories/2008/0149

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:210

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.securityfocus.com/bid/25898

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://bugs.gentoo.org/show_bug.cgi?id=194606

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.vupen.com/english/advisories/2007/3338

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/27560

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11599

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://docs.info.apple.com/article.html?artnum=307562

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.vupen.com/english/advisories/2007/3337

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/36920

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://secunia.com/advisories/28536

Resource:

third-party-advisory

x_refsource_SECUNIA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.novell.com/linux/security/advisories/2007_54_xorg.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.securitytracker.com/id?1018763	vdb-entry x_refsource_SECTRACK x_transferred
http://secunia.com/advisories/28542	third-party-advisory x_refsource_SECUNIA x_transferred
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200642-1	vendor-advisory x_refsource_SUNALERT x_transferred
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html	vendor-advisory x_refsource_FEDORA x_transferred
http://www.securityfocus.com/archive/1/481432/100/0/threaded	mailing-list x_refsource_BUGTRAQ x_transferred
http://bugs.freedesktop.org/show_bug.cgi?id=12299	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/28514	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/27052	third-party-advisory x_refsource_SECUNIA x_transferred
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602	third-party-advisory x_refsource_IDEFENSE x_transferred
http://secunia.com/advisories/27060	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.vupen.com/english/advisories/2008/0924/references	vdb-entry x_refsource_VUPEN x_transferred
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725	vendor-advisory x_refsource_HP x_transferred
http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html	mailing-list x_refsource_MLIST x_transferred
http://www.redhat.com/support/errata/RHSA-2008-0029.html	vendor-advisory x_refsource_REDHAT x_transferred
http://secunia.com/advisories/28004	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/27240	third-party-advisory x_refsource_SECUNIA x_transferred
https://issues.rpath.com/browse/RPL-1756	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/29420	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/27040	third-party-advisory x_refsource_SECUNIA x_transferred
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	vendor-advisory x_refsource_APPLE x_transferred
http://secunia.com/advisories/27176	third-party-advisory x_refsource_SECUNIA x_transferred
http://security.gentoo.org/glsa/glsa-200710-11.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://secunia.com/advisories/27228	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.vupen.com/english/advisories/2007/3467	vdb-entry x_refsource_VUPEN x_transferred
http://www.redhat.com/support/errata/RHSA-2008-0030.html	vendor-advisory x_refsource_REDHAT x_transferred
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1	vendor-advisory x_refsource_SUNALERT x_transferred
http://www.vupen.com/english/advisories/2008/0149	vdb-entry x_refsource_VUPEN x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2007:210	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.securityfocus.com/bid/25898	vdb-entry x_refsource_BID x_transferred
http://bugs.gentoo.org/show_bug.cgi?id=194606	x_refsource_CONFIRM x_transferred
http://www.vupen.com/english/advisories/2007/3338	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/27560	third-party-advisory x_refsource_SECUNIA x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11599	vdb-entry signature x_refsource_OVAL x_transferred
http://docs.info.apple.com/article.html?artnum=307562	x_refsource_CONFIRM x_transferred
http://www.vupen.com/english/advisories/2007/3337	vdb-entry x_refsource_VUPEN x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/36920	vdb-entry x_refsource_XF x_transferred
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725	vendor-advisory x_refsource_HP x_transferred
http://secunia.com/advisories/28536	third-party-advisory x_refsource_SECUNIA x_transferred

Hyperlink: http://www.novell.com/linux/security/advisories/2007_54_xorg.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://www.securitytracker.com/id?1018763

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: http://secunia.com/advisories/28542

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200642-1

Resource:

vendor-advisory

x_refsource_SUNALERT

x_transferred

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/481432/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://bugs.freedesktop.org/show_bug.cgi?id=12299

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://secunia.com/advisories/28514

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/27052

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602

Resource:

third-party-advisory

x_refsource_IDEFENSE

x_transferred

Hyperlink: http://secunia.com/advisories/27060

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2008/0924/references

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html

Resource:

mailing-list

x_refsource_MLIST

x_transferred

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0029.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://secunia.com/advisories/28004

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/27240

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://issues.rpath.com/browse/RPL-1756

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://secunia.com/advisories/29420

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/27040

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

x_transferred

Hyperlink: http://secunia.com/advisories/27176

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200710-11.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://secunia.com/advisories/27228

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2007/3467

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0030.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1

Resource:

vendor-advisory

x_refsource_SUNALERT

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2008/0149

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:210

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://www.securityfocus.com/bid/25898

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://bugs.gentoo.org/show_bug.cgi?id=194606

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2007/3338

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://secunia.com/advisories/27560

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11599

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://docs.info.apple.com/article.html?artnum=307562

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2007/3337

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/36920

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://secunia.com/advisories/28536

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References