CVE-2007-1667 - Secunia Advisories - Vulnerability Intelligence - Secunia.com

Vulnerability Intelligence

Vulnerability Scanning

Community - new!

Blog - new entry!

Corporate Information

Secunia Advisories

Secunia Research

Binary Analysis

Home > Vulnerability Intelligence > Secunia Advisories > CVE-2007-1667

Secunia Advisories

Advisories by Product

Advisories by Vendor

Historic Advisories

Mailing Lists & RSS

Report Vulnerability

Business Solutions Restricted

Restricted

Partner Solutions Restricted

Restricted

CVE Reference: CVE-2007-1667
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1667

Description: Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-453-2 http://www.ubuntu.com/usn/usn-481-1 http://www.ubuntu.com/usn/usn-453-1 SUSE http://www.novell.com/linux/security/advisories/2007_8_sr.html http://www.novell.com/linux/security/advisories/2007_27_x.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102888-1 ST 1017864 SAID Secunia Advisory: SA25305 Secunia Advisory: SA25131 Secunia Advisory: SA25072 Secunia Advisory: SA25112 Secunia Advisory: SA24975 Secunia Advisory: SA25004 Secunia Advisory: SA24953 Secunia Advisory: SA24739 Secunia Advisory: SA24791 Secunia Advisory: SA24771 Secunia Advisory: SA24765 Secunia Advisory: SA24758 Secunia Advisory: SA24745 Secunia Advisory: SA24741 Secunia Advisory: SA24756 Secunia Advisory: SA25992 Secunia Advisory: SA26177 Secunia Advisory: SA30161 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0126.html http://rhn.redhat.com/errata/RHSA-2007-0125.html http://www.redhat.com/support/errata/RHSA-2007-0157.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1693 OPENBSD http://www.openbsd.org/errata39.html#021_xorg http://www.openbsd.org/errata40.html#011_xorg MLIST http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:147 http://www.mandriva.com/security/advisories?name=MDKSA-2007:079 GENTOO http://security.gentoo.org/glsa/glsa-200705-06.xml http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml DEBIAN http://www.debian.org/security/2007/dsa-1294 CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=414045 http://support.avaya.com/elmodocs2/security/ASA-2007-176.htm http://issues.foresightlinux.org/browse/FL-223 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/464816/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/464686/100/0/threaded BID 23300

Return to the previous page.

Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008