FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 06:42:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
a5f667db-7596-11dc-8b7a-0019b944b34e	xfs -- multiple vulnerabilities Matthieu Herrb reports: Problem Description: Several vulnerabilities have been identified in xfs, the X font server. The QueryXBitmaps and QueryXExtents protocol requests suffer from lack of validation of their 'length' parameters. Impact: On most modern systems, the font server is accessible only for local clients and runs with reduced privileges, but on some systems it may still be accessible from remote clients and possibly running with root privileges, creating an opportunity for remote privilege escalation. Discovery 2007-10-02 Entry 2007-10-08 xfs < 1.0.5,1 CVE-2007-4568 http://lists.freedesktop.org/archives/xorg/2007-October/028899.html

VuXML ID

Description

a5f667db-7596-11dc-8b7a-0019b944b34e

xfs -- multiple vulnerabilities

Matthieu Herrb reports:

Problem Description:

Several vulnerabilities have been identified in xfs, the X font server. The QueryXBitmaps and QueryXExtents protocol requests suffer from lack of validation of their 'length' parameters.

Impact:

On most modern systems, the font server is accessible only for local clients and runs with reduced privileges, but on some systems it may still be accessible from remote clients and possibly running with root privileges, creating an opportunity for remote privilege escalation.

Discovery 2007-10-02
Entry 2007-10-08
xfs

< 1.0.5,1

CVE-2007-4568
http://lists.freedesktop.org/archives/xorg/2007-October/028899.html