~wgrant/ubuntu-cve-tracker/mainold

« back to all changes in this revision

Viewing changes to retired/CVE-2008-2362

Committer: William Grant
Date: 2008-07-02 10:48:21 UTC
mfrom: (1065.2.160 ubuntu-cve)
Revision ID: william@qeuni.net-20080702104821-70vzji3k2trjz4ft

Merge from master.

files added:
active/00boilerplate.xen

active/CVE-2008-0598

active/CVE-2008-1952

active/CVE-2008-2307

active/CVE-2008-2365

active/CVE-2008-2372

active/CVE-2008-2665

active/CVE-2008-2666

active/CVE-2008-2729

active/CVE-2008-2826

active/CVE-2008-2828

active/CVE-2008-2836

retired/CVE-2008-2827

retired/CVE-2008-2841

files renamed:
active/CVE-2008-0891 => retired/CVE-2008-0891

active/CVE-2008-1672 => retired/CVE-2008-1672

files modified:
README

active/00boilerplate.firefox

active/CVE-2006-0914

active/CVE-2006-4574

active/CVE-2006-4805

active/CVE-2006-5468

active/CVE-2006-5469

active/CVE-2006-5740

active/CVE-2007-0456

active/CVE-2007-0458

active/CVE-2007-0459

active/CVE-2007-3698

active/CVE-2007-3713

active/CVE-2007-4400

active/CVE-2007-4721

active/CVE-2007-5156

active/CVE-2007-5245

active/CVE-2007-5624

active/CVE-2007-5824

active/CVE-2007-5825

active/CVE-2007-5900

active/CVE-2007-6299

active/CVE-2007-6438

active/CVE-2007-6439

active/CVE-2007-6441

active/CVE-2007-6450

active/CVE-2007-6451

active/CVE-2008-0169

active/CVE-2008-0960

active/CVE-2008-0967

active/CVE-2008-1070

active/CVE-2008-1071

active/CVE-2008-1072

active/CVE-2008-1142

active/CVE-2008-1284

active/CVE-2008-1474

active/CVE-2008-1657

active/CVE-2008-1686

active/CVE-2008-1692

active/CVE-2008-1767

active/CVE-2008-1832

active/CVE-2008-1891

active/CVE-2008-1897

active/CVE-2008-1924

active/CVE-2008-2230

active/CVE-2008-2266

active/CVE-2008-2302

active/CVE-2008-2364

active/CVE-2008-2516

active/CVE-2008-2662

active/CVE-2008-2663

active/CVE-2008-2664

active/CVE-2008-2711

active/CVE-2008-2713

active/CVE-2008-2725

active/CVE-2008-2726

active/CVE-2008-2751

ignored/not-for-us.txt

retired/CVE-2005-1564

retired/CVE-2005-4816

retired/CVE-2006-6301

retired/CVE-2007-4033

retired/CVE-2007-4323

retired/CVE-2007-4565

retired/CVE-2007-4997

retired/CVE-2007-5770

retired/CVE-2008-1108

retired/CVE-2008-1109

retired/CVE-2008-1293

retired/CVE-2008-1294

retired/CVE-2008-1375

retired/CVE-2008-1377

retired/CVE-2008-1379

retired/CVE-2008-1669

retired/CVE-2008-1675

retired/CVE-2008-2152

retired/CVE-2008-2360

retired/CVE-2008-2361

retired/CVE-2008-2362

scripts/check-cves

scripts/check-syntax

scripts/cve_lib.py

scripts/html-export-cve.py

scripts/next-release.py

scripts/pkg_status

scripts/skeleton-utility.py

scripts/sync-from-usns.py

scripts/sync-from-versions.py

scripts/ubuntu-table

Show diffs side-by-side

added added

removed removed

retired/CVE-2008-2362

Candidate: CVE-2008-2362

References:

http://www.ubuntu.com/usn/usn-616-1

Description:

Multiple integer overflows in the Render extension in the X server 1.4 in

X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code

via a (1) SProcRenderCreateLinearGradient, (2)

SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient

request with an invalid field specifying the number of bytes to swap in the

request data, which triggers heap memory corruption.

Ubuntu-Description:

Notes:

Bugs:

Older »