CVE-2006-6102

Summary

CVE	CVE-2006-6102
State	PUBLISHED
Assigner	redhat
Source Priority	CVE Program / NVD first with legacy fallback
Published	2006-12-31 05:00:00 UTC
Updated	2026-04-23 00:35:47 UTC
Description	Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.

Risk And Classification

Primary CVSS: v2.0 10 from [email protected]

AV:N/AC:L/Au:N/C:C/I:C/A:C

Problem Types: NVD-CWE-Other | n/a

CVSS v2.0 Breakdown

Access Vector

Network

Access Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	X.org	X.org	6.8.2	All	All	All
Application	X.org	X.org	6.9.0	All	All	All
Application	X.org	X.org	7.0	All	All	All
Application	X.org	X.org	7.1	All	All	All
Application	Xfree86 Project	Xfree86 X Server	All	All	All	All

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

References

Reference	Source	Link	Tags
[ANNOUNCE] X.Org Security Advisory: multiple integer overflows in dbe and render extensions	af854a3a-2127-422b-91ae-364da2661108	lists.freedesktop.org	Patch, Vendor Advisory
SUSE update for XFree86 and Xorg - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Webmail - OVH	af854a3a-2127-422b-91ae-364da2661108	www.vupen.com
Avaya Products XFree86 "DBE" and "Render" Extensions Vulnerabilities - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
The Slackware Linux Project: Slackware Security Advisories	af854a3a-2127-422b-91ae-364da2661108	slackware.com
Debian update for xfree86 - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
osvdb.org/32085	af854a3a-2127-422b-91ae-364da2661108	osvdb.org
HP-UX update for Xserver - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Support	af854a3a-2127-422b-91ae-364da2661108	www.redhat.com
Webmail - OVH	af854a3a-2127-422b-91ae-364da2661108	www.vupen.com
Webmail - OVH	af854a3a-2127-422b-91ae-364da2661108	www.vupen.com
ASA-2007-066 (RHSA-2007-0002)	af854a3a-2127-422b-91ae-364da2661108	support.avaya.com
Mandriva update for xorg-x11 - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Webmail - OVH	af854a3a-2127-422b-91ae-364da2661108	www.vupen.com
Gentoo update for xorg-server - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
issues.rpath.com/browse/RPL-920	af854a3a-2127-422b-91ae-364da2661108	issues.rpath.com
Webmail - OVH	af854a3a-2127-422b-91ae-364da2661108	www.vupen.com
Repository / Oval Repository	af854a3a-2127-422b-91ae-364da2661108	oval.cisecurity.org
ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-002.txt.asc	af854a3a-2127-422b-91ae-364da2661108	ftp.netbsd.org
XFree86 "DBE" and "Render" Extensions Vulnerabilities - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Advisories - Mandriva Linux	af854a3a-2127-422b-91ae-364da2661108	www.mandriva.com
Red Hat update for xorg-x11 - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
ASA-2007-074 (SUN 102803)	af854a3a-2127-422b-91ae-364da2661108	support.avaya.com
Security Announcement	af854a3a-2127-422b-91ae-364da2661108	www.novell.com
h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp	af854a3a-2127-422b-91ae-364da2661108	h20000.www2.hp.com
rPath update for xorg-x11 - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Avaya CMS xfs / X Render and DBE Extensions Vulnerabilities - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
rhn.redhat.com \| Red Hat Support	af854a3a-2127-422b-91ae-364da2661108	www.redhat.com
USN-403-1: X.org vulnerabilities \| Ubuntu	af854a3a-2127-422b-91ae-364da2661108	www.ubuntu.com
X Memory Corruption Errors in Render and DBE Extensions Let Local Users Gain Root Privileges - SecurityTracker	af854a3a-2127-422b-91ae-364da2661108	securitytracker.com
Debian -- Security Information -- DSA-1249-1 xfree86	af854a3a-2127-422b-91ae-364da2661108	www.debian.org
IBM X-Force Exchange	af854a3a-2127-422b-91ae-364da2661108	exchange.xforce.ibmcloud.com
X.Org X11 "DBE" and "Render" Extensions Vulnerabilities - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
X.Org DBE And Render Extensions Multiple Local Integer Overflow Vulnerabilities	af854a3a-2127-422b-91ae-364da2661108	www.securityfocus.com
#102803: Multiple Integer Overflow Vulnerabilities in the X Font Server (xfs(1)) and the X Render and DBE Extensions	af854a3a-2127-422b-91ae-364da2661108	sunsolve.sun.com
Sun Solaris X Font Server / X Render and DBE Extensions Vulnerabilities - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
labs.idefense.com/intelligence/vulnerabilities/display.php	af854a3a-2127-422b-91ae-364da2661108	labs.idefense.com	Vendor Advisory
Ubuntu update for xserver-xorg-core - Advisories - Secunia	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Gentoo Linux Documentation -- X.Org X server: Multiple vulnerabilities	af854a3a-2127-422b-91ae-364da2661108	security.gentoo.org
Slackware update for x11 - Secunia.com	af854a3a-2127-422b-91ae-364da2661108	secunia.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

Vendor Comments And Credit

Organization	Published	Contributor	Statement
Red Hat	2007-03-14	Mark J Cox	Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

There are currently no legacy QID mappings associated with this CVE.