X Font Server
Approved changes feed: RSS · Atom
cpe:2.3:a:x.org:x_font_server:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | X.Org (4cd053ee-09df-594a-873d-dbd09ec2f899) |
|---|---|
| Product | X Font Server (97164f9e-7855-544e-bf02-3a48b5d4e229) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/freedesktop/xorg-xfs |
purl2cpe | 2026-06-01 10:14:02.657131 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2007-4990 |
vulnerable | 2026-06-03 14:28:19.847137 |
Details available
The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.
Published: 2007-10-05T21:00:00.000Z
Updated: 2024-08-07T15:17:27.847Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.