Unrated severityNVD Advisory· Published Oct 5, 2007· Updated Apr 23, 2026
CVE-2007-4568
CVE-2007-4568
Description
Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values, which triggers a heap-based buffer overflow.
Affected products
3cpe:2.3:a:x.org:x_font_server:1.0.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:x.org:x_font_server:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:x_font_server:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:x_font_server:1.0.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
42- labs.idefense.com/intelligence/vulnerabilities/display.phpnvdPatch
- lists.freedesktop.org/archives/xorg-announce/2007-October/000416.htmlnvdPatch
- www.us-cert.gov/cas/techalerts/TA08-043B.htmlnvdUS Government Resource
- bugs.freedesktop.org/show_bug.cginvd
- bugs.gentoo.org/show_bug.cginvd
- docs.info.apple.com/article.htmlnvd
- docs.info.apple.com/article.htmlnvd
- lists.apple.com/archives/security-announce/2008/Feb/msg00002.htmlnvd
- lists.apple.com/archives/security-announce/2008/Mar/msg00001.htmlnvd
- secunia.com/advisories/27040nvd
- secunia.com/advisories/27052nvd
- secunia.com/advisories/27060nvd
- secunia.com/advisories/27168nvd
- secunia.com/advisories/27176nvd
- secunia.com/advisories/27228nvd
- secunia.com/advisories/27240nvd
- secunia.com/advisories/27560nvd
- secunia.com/advisories/28004nvd
- secunia.com/advisories/28536nvd
- secunia.com/advisories/28542nvd
- secunia.com/advisories/28891nvd
- secunia.com/advisories/29420nvd
- security.gentoo.org/glsa/glsa-200710-11.xmlnvd
- sunsolve.sun.com/search/document.donvd
- sunsolve.sun.com/search/document.donvd
- www.debian.org/security/2007/dsa-1385nvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2007_54_xorg.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0029.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0030.htmlnvd
- www.securityfocus.com/archive/1/481432/100/0/threadednvd
- www.securityfocus.com/bid/25898nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/3337nvd
- www.vupen.com/english/advisories/2007/3338nvd
- www.vupen.com/english/advisories/2007/3467nvd
- www.vupen.com/english/advisories/2008/0495/referencesnvd
- www.vupen.com/english/advisories/2008/0924/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36919nvd
- issues.rpath.com/browse/RPL-1756nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10882nvd
- www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.htmlnvd
News mentions
0No linked articles in our index yet.