VYPR
Unrated severityNVD Advisory· Published May 2, 2006· Updated Jun 16, 2026

CVE-2006-1526

CVE-2006-1526

Description

Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a "&" instead of a "*" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Xorg/X11r64 versions
    cpe:2.3:a:x.org:x11r6:6.7.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:x.org:x11r6:6.7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:x.org:x11r6:6.8:*:*:*:*:*:*:*
    • cpe:2.3:a:x.org:x11r6:6.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:x.org:x11r6:6.9:*:*:*:*:*:*:*
  • Xorg/Xserverllm-create
    Range: >=6.8.0

Patches

Vulnerability mechanics

References

25

News mentions

0

No linked articles in our index yet.