← voltar
CVE-2006-1526

CVE-2006-1526

EPSS 0.5%
Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a "&" instead of a "*" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.freedesktop.org/archives/xorg/2006-May/015136.htmlhttps://bugs.freedesktop.org/show_bug.cgi?id=6642http://secunia.com/advisories/19900http://secunia.com/advisories/19915http://secunia.com/advisories/19916http://secunia.com/advisories/19921http://secunia.com/advisories/19943http://secunia.com/advisories/19951http://secunia.com/advisories/19956http://secunia.com/advisories/19983http://securitytracker.com/id?1016018https://exchange.xforce.ibmcloud.com/vulnerabilities/26200