CVE-2007-1667

Summary

CVE	CVE-2007-1667
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2007-03-24 21:19:00 UTC
Updated	2018-10-16 16:40:00 UTC
Description	Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

Risk And Classification

Problem Types: CWE-189

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Imagemagick	Imagemagick	All	All	All	All
Application	Imagemagick	Imagemagick	All	All	All	All
Application	X.org	Libx11	All	All	All	All

References

Reference	Source	Link	Tags
SUSE Update for Multiple Packages - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
issues.rpath.com/browse/RPL-1211	CONFIRM	issues.rpath.com
Security Announcement	SUSE	www.novell.com
Webmail \| OVH- OVH	VUPEN	www.vupen.com
OpenBSD 4.0 errata	OPENBSD	www.openbsd.org
Advisories \| Mandriva	MANDRIVA	www.mandriva.com
APPLE-SA-2009-02-12 Security Update 2009-001	APPLE	lists.apple.com
OpenBSD 3.9 errata	OPENBSD	www.openbsd.org
Mandriva update for ImageMagick - Secunia Advisories - Vulnerability Intelligence - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
Debian -- Security Information -- DSA-1294-1 xfree86	DEBIAN	www.debian.org
Security Advisory SA24953 - Ubuntu update for libx11 - Secunia	SECUNIA	secunia.com	Vendor Advisory
rpath update for ImageMagick - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
ImageMagick XGetPixel/XInitImage Multiple Integer Overflow Vulnerabilities	BID	www.securityfocus.com
X11 libx11 Integer Overflow Lets Remote Users Deny Service - SecurityTracker	SECTRACK	www.securitytracker.com
Debian update for imagemagick - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
[ANNOUNCE] various integer overflow vulnerabilites in xserver, libX11 and libXfont	MLIST	lists.freedesktop.org
Red Hat update for XFree86 - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
Webmail \| OVH- OVH	VUPEN	www.vupen.com
Avaya CMS / IR Sun Solaris libX11 Integer Overflow Vulnerability - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
Support	REDHAT	www.redhat.com	Vendor Advisory
102888	SUNALERT	sunsolve.sun.com
Support	REDHAT	www.redhat.com	Vendor Advisory
231684 – (CVE-2007-1667) CVE-2007-1667 XGetPixel() integer overflow	CONFIRM	bugzilla.redhat.com
USN-481-1: ImageMagick vulnerabilities \| Ubuntu	UBUNTU	www.ubuntu.com
Debian update for xfree86 - Secunia Advisories - Vulnerability Intelligence - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
#414045 - libX11: Buffer overflow in XGetPixel(). - Debian Bug report logs	CONFIRM	bugs.debian.org
issues.foresightlinux.org/browse/FL-223	CONFIRM	issues.foresightlinux.org
Security Announcement	SUSE	www.novell.com
Linux Terminal Server Project: Multiple vulnerabilities — Gentoo Linux Documentation	GENTOO	www.gentoo.org
Debian -- Security Information -- DSA-1858-1 imagemagick	DEBIAN	www.debian.org
Ubuntu update for imagemagick - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
Gentoo Linux Documentation -- X.Org X11 library: Multiple integer overflows	GENTOO	security.gentoo.org
Mandriva update for xorg-x11 - Secunia Advisories - Vulnerability Intelligence - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
SecurityFocus	BUGTRAQ	www.securityfocus.com
Support / Security / Advisories / / MDKSA-2007:079 \| Mandriva	MANDRIVA	www.mandriva.com
Gentoo update for libX11 - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
issues.rpath.com/browse/RPL-1213	CONFIRM	issues.rpath.com
rhn.redhat.com \| Red Hat Support	REDHAT	rhn.redhat.com	Vendor Advisory
SecurityFocus	BUGTRAQ	www.securityfocus.com
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities - Secunia Advisories - Vulnerability Information - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
X.Org X11 Multiple Vulnerabilities - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
XFree86 Multiple Vulnerabilities - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
SUSE update for XFree86 and Xorg - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
ASA-2007-176 (SUN 102888)	CONFIRM	support.avaya.com
Red Hat update for xorg-x11 - Secunia Advisories - Vulnerability Intelligence - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
Repository / Oval Repository	OVAL	oval.cisecurity.org
USN-453-2: rdesktop regression \| Ubuntu	UBUNTU	www.ubuntu.com
OpenBSD update for X.Org - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
USN-453-1: X.org vulnerability \| Ubuntu	UBUNTU	www.ubuntu.com
Gentoo ltsp Multiple Vulnerabilities - Secunia Advisories - Vulnerability Intelligence - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
rPath update for freetype, xorg-x11, xorg-x11-fonts, xorg-x11-tools, and xorg-x11-xfs - Secunia Advisories - Vulnerability Intelligence - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
About the security content of Security Update 2009-001	CONFIRM	support.apple.com
Repository / Oval Repository	OVAL	oval.cisecurity.org
Sun Solaris libX11 Integer Overflow Vulnerability - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.