VYPR
Unrated severityNVD Advisory· Published May 2, 2007· Updated Jun 16, 2026

CVE-2007-2437

CVE-2007-2437

Description

The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:x.org:xserver:*:*:*:*:*:*:*:*
    Range: <=1.3.0
  • cpe:2.3:a:x.org:x_window_system:7.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:x.org:x_window_system:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:x.org:x_window_system:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:x.org:x_window_system:7.2:*:*:*:*:*:*:*
    • (no CPE)range: <=7.2 (Xserver <=1.3.0)

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.