VYPR
Unrated severityNVD Advisory· Published Sep 13, 2006· Updated Jun 16, 2026

CVE-2006-3740

CVE-2006-3740

Description

Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Xorg/Xfree86 X2 versions
    cpe:2.3:a:xfree86_project:xfree86_x:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:xfree86_project:xfree86_x:*:*:*:*:*:*:*:*
    • (no CPE)
  • Xorg/X.org2 versions
    cpe:2.3:a:x.org:x.org:6.8.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:x.org:x.org:6.8.2:*:*:*:*:*:*:*
    • (no CPE)range: = 6.8.2

Patches

Vulnerability mechanics

References

39

News mentions

0

No linked articles in our index yet.