CVE-2010-4819

The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "input sanitization flaw."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.6 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 22%
VendorProductVersion
xx.org-xserver
𝑥
≤ 1.7.7
xx.org-xserver
1.7
xx.org-xserver
1.7.6.902
xx.org-xserver
1.7.7:rc2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xorg-server
bullseye
2:1.20.11-1+deb11u13
fixed
lenny
no-dsa
bullseye (security)
2:1.20.11-1+deb11u14
fixed
bookworm
2:21.1.7-3+deb12u7
fixed
bookworm (security)
2:21.1.7-3+deb12u8
fixed
sid
2:21.1.14-1
fixed
trixie
2:21.1.14-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xorg-server
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
Fixed 2:1.7.6-2ubuntu7.8
released
hardy
ignored
Common Weakness Enumeration
References
http://aix.software.ibm.com/aix/efixes/security/X_advisory2.asc
http://cgit.freedesktop.org/xorg/xserver/commit/render/render.c?id=5725849a1b427cd4a72b84e57f211edb35838718
http://rhn.redhat.com/errata/RHSA-2011-1359.html
http://rhn.redhat.com/errata/RHSA-2011-1360.html
http://securitytracker.com/id?1026149
http://www.openwall.com/lists/oss-security/2011/09/22/8
http://www.openwall.com/lists/oss-security/2011/09/23/5
https://bugs.freedesktop.org/show_bug.cgi?id=28801
http://aix.software.ibm.com/aix/efixes/security/X_advisory2.asc
http://cgit.freedesktop.org/xorg/xserver/commit/render/render.c?id=5725849a1b427cd4a72b84e57f211edb35838718
http://rhn.redhat.com/errata/RHSA-2011-1359.html
http://rhn.redhat.com/errata/RHSA-2011-1360.html
http://securitytracker.com/id?1026149
http://www.openwall.com/lists/oss-security/2011/09/22/8
http://www.openwall.com/lists/oss-security/2011/09/23/5
https://bugs.freedesktop.org/show_bug.cgi?id=28801