CVE-2006-6102

Publication date 31 December 2006

Last updated 24 July 2024


Ubuntu priority

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.

Status

Package Ubuntu Release Status
xorg 7.04 feisty
Not affected
6.10 edgy
Not affected
6.06 LTS dapper
Not affected
xorg-server 7.04 feisty
Fixed 1.2.0-3ubuntu8
6.10 edgy
Fixed 1.1.1-0ubuntu12.2
6.06 LTS dapper
Fixed 1.0.2-0ubuntu10.7

References

Related Ubuntu Security Notices (USN)

    • USN-403-1
    • X.org vulnerabilities
    • 9 January 2007

Other references