Ubuntu Linux

Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but it is not exploitable.

Published: 2007-09-18T19:00:00.000Z
Updated: 2024-08-07T14:46:38.696Z

Format string vulnerability in Inkscape before 0.45.1 allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a URI, which is not properly handled by certain dialogs.

Published: 2007-03-21T19:00:00.000Z
Updated: 2024-08-07T12:59:08.098Z

Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.

Published: 2007-04-06T01:00:00.000Z
Updated: 2024-08-07T12:50:35.267Z

Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.

Published: 2007-04-06T01:00:00.000Z
Updated: 2024-08-07T12:50:35.134Z

Heap-based buffer overflow in the showQueryPackage function in librpm in RPM Package Manager 4.4.8, when the LANG environment variable is set to ru_RU.UTF-8, might allow user-assisted attackers to execute arbitrary code via crafted RPM packages.

Published: 2006-11-06T17:00:00.000Z
Updated: 2024-08-07T19:48:30.563Z