CVE-2008-2362

Impact:
Important
Public Date:
2008-06-11
CWE:
CWE-20
Bugzilla:
448785: CVE-2008-2362 X.org Render extension input validation flaw causing memory corruption

The MITRE CVE dictionary describes this issue as:

Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption.

Find out more about CVE-2008-2362 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (xorg-x11-server) RHSA-2008:0504 2008-06-11

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.