2
Candidate: CVE-2007-4990
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4990
6
The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows
7
context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps
8
and (2) QueryXExtents protocol requests with crafted size values that
9
specify an arbitrary number of bytes to be swapped on the heap, which
10
triggers heap corruption.
13
jdstrand> runs as root
18
dapper_xfs: ignored (reached end-of-life)
19
edgy_xfs: needed (reached end-of-life)
20
feisty_xfs: needed (reached end-of-life)
21
gutsy_xfs: needed (reached end-of-life)
22
hardy_xfs: not-affected (1:1.0.5-2)
23
intrepid_xfs: not-affected (1:1.0.5-2)
24
jaunty_xfs: not-affected (1:1.0.5-2)
25
karmic_xfs: not-affected (1:1.0.5-2)
26
devel_xfs: not-affected (1:1.0.5-2)