← volver
CVE-2006-1526

CVE-2006-1526

EPSS 0.5%
Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a "&" instead of a "*" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.freedesktop.org/archives/xorg/2006-May/015136.htmlhttps://bugs.freedesktop.org/show_bug.cgi?id=6642http://secunia.com/advisories/19900http://secunia.com/advisories/19915http://secunia.com/advisories/19916http://secunia.com/advisories/19921http://secunia.com/advisories/19943http://secunia.com/advisories/19951http://secunia.com/advisories/19956http://secunia.com/advisories/19983http://securitytracker.com/id?1016018https://exchange.xforce.ibmcloud.com/vulnerabilities/26200