Unrated severityNVD Advisory· Published Sep 11, 2007· Updated Apr 23, 2026
CVE-2007-4730
CVE-2007-4730
Description
Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.
Affected products
5cpe:2.3:a:x.org:xorg-server:1.01:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:x.org:xorg-server:1.01:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:xorg-server:1.02:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:xorg-server:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:xorg-server:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:x.org:xorg-server:1.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
30- secunia.com/advisories/26743nvdPatchVendor Advisory
- secunia.com/advisories/26755nvdPatchVendor Advisory
- www.debian.org/security/2007/dsa-1372nvdPatch
- bugs.freedesktop.org/show_bug.cginvd
- bugs.gentoo.org/show_bug.cginvd
- lists.freedesktop.org/archives/xorg-announce/2007-September/000378.htmlnvd
- osvdb.org/37726nvd
- secunia.com/advisories/26763nvd
- secunia.com/advisories/26823nvd
- secunia.com/advisories/26859nvd
- secunia.com/advisories/26897nvd
- secunia.com/advisories/27147nvd
- secunia.com/advisories/27179nvd
- secunia.com/advisories/27228nvd
- secunia.com/advisories/30161nvd
- security.gentoo.org/glsa/glsa-200710-16.xmlnvd
- support.avaya.com/elmodocs2/security/ASA-2007-394.htmnvd
- wiki.rpath.com/wiki/Advisories:rPSA-2007-0187nvd
- www.gentoo.org/security/en/glsa/glsa-200805-07.xmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2007_54_xorg.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-0898.htmlnvd
- www.securityfocus.com/bid/25606nvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/usn-514-1nvd
- www.vupen.com/english/advisories/2007/3098nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36535nvd
- issues.rpath.com/browse/RPL-1728nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10430nvd
News mentions
0No linked articles in our index yet.