Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Apr 23, 2026

CVE-2006-6101

Description

Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of glyph management data structures.

Affected products

Xorg/X.org4 versions
cpe:2.3:a:x.org:x.org:6.8.2:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:x.org:x.org:6.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:x.org:6.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:x.org:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:x.org:7.1:*:*:*:*:*:*:*
Xorg/Xfree86
cpe:2.3:a:xfree86_project:xfree86:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

labs.idefense.com/intelligence/vulnerabilities/display.phpnvdPatchVendor Advisory
lists.freedesktop.org/archives/xorg-announce/2007-January/000235.htmlnvdPatchVendor Advisory
ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-002.txt.ascnvd
h20000.www2.hp.com/bizsupport/TechSupport/Document.jspnvd
osvdb.org/32084nvd
secunia.com/advisories/23633nvd
secunia.com/advisories/23670nvd
secunia.com/advisories/23684nvd
secunia.com/advisories/23689nvd
secunia.com/advisories/23698nvd
secunia.com/advisories/23705nvd
secunia.com/advisories/23758nvd
secunia.com/advisories/23789nvd
secunia.com/advisories/23966nvd
secunia.com/advisories/24168nvd
secunia.com/advisories/24210nvd
secunia.com/advisories/24247nvd
secunia.com/advisories/24401nvd
secunia.com/advisories/25802nvd
security.gentoo.org/glsa/glsa-200701-25.xmlnvd
securitytracker.com/idnvd
slackware.com/security/viewer.phpnvd
sunsolve.sun.com/search/document.donvd
support.avaya.com/elmodocs2/security/ASA-2007-066.htmnvd
support.avaya.com/elmodocs2/security/ASA-2007-074.htmnvd
www.mandriva.com/security/advisoriesnvd
www.novell.com/linux/security/advisories/2007_08_x.htmlnvd
www.redhat.com/support/errata/RHSA-2007-0002.htmlnvd
www.redhat.com/support/errata/RHSA-2007-0003.htmlnvd
www.securityfocus.com/bid/21968nvd
www.ubuntu.com/usn/usn-403-1nvd
www.vupen.com/english/advisories/2007/0108nvd
www.vupen.com/english/advisories/2007/0109nvd
www.vupen.com/english/advisories/2007/0589nvd
www.vupen.com/english/advisories/2007/0669nvd
www.vupen.com/english/advisories/2007/2233nvd
exchange.xforce.ibmcloud.com/vulnerabilities/31337nvd
issues.rpath.com/browse/RPL-920nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10490nvd
www.debian.org/security/2007/dsa-1249nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000