PublicDate: 2007-10-05 21:17:00 UTC
Candidate: CVE-2007-4568
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4568
Description:
 Integer overflow in the build_range function in X.Org X Font Server (xfs)
 before 1.0.5 allows context-dependent attackers to execute arbitrary code
 via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted
 size values, which triggers a heap-based buffer overflow.
Ubuntu-Description: 
Notes: 
 kees> sarge:4.3.0.dfsg.1-14sarge5, etch:1.0.1-7, unstable:1.0.5-1
Bugs: 
 https://launchpad.net/bugs/148940
Priority: medium
Discovered-by:
Assigned-to: 
CVSS: 
upstream_xfs: needed
dapper_xfs: ignored (reached end-of-life)
edgy_xfs: needed (reached end-of-life)
feisty_xfs: needed (reached end-of-life)
gutsy_xfs: released (1:1.0.4-2ubuntu1)
hardy_xfs: released (1:1.0.4-2ubuntu1)
intrepid_xfs: released (1:1.0.4-2ubuntu1)
jaunty_xfs: released (1:1.0.4-2ubuntu1)
karmic_xfs: released (1:1.0.4-2ubuntu1)
devel_xfs: released (1:1.0.4-2ubuntu1)