CVE-2006-3739 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-3739
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3739

Description: Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted Adobe Font Metrics (AFM) files with a modified number of character metrics (StartCharMetrics), which leads to a heap-based buffer overflow.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/28899 UBUNTU http://www.ubuntu.com/usn/usn-344-1 SUSE http://www.novell.com/linux/security/advisories/2006_23_sr.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102780-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102714-1 ST 1016828 SAID Secunia Advisory: SA21864 Secunia Advisory: SA21889 Secunia Advisory: SA21890 Secunia Advisory: SA21894 Secunia Advisory: SA21900 Secunia Advisory: SA21904 Secunia Advisory: SA21908 Secunia Advisory: SA21924 Secunia Advisory: SA22141 Secunia Advisory: SA22332 Secunia Advisory: SA22560 Secunia Advisory: SA23033 Secunia Advisory: SA22080 Secunia Advisory: SA23899 Secunia Advisory: SA24636 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0666.html http://www.redhat.com/support/errata/RHSA-2006-0665.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:164 IDEFENSE http://www.idefense.com/intelligence/vulnerabilities/display.php?id=412 GENTOO http://security.gentoo.org/glsa/glsa-200609-07.xml DEBIAN http://www.debian.org/security/2006/dsa-1193 CONFIRM http://www.vmware.com/support/esx25/doc/esx-254-200702-patch.html http://support.avaya.com/elmodocs2/security/ASA-2006-190.htm http://support.avaya.com/elmodocs2/security/ASA-2006-191.htm BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/445812/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/464268/100/0/threaded BID 19974

Return to the previous page.