CVE-2007-1003

Name of the Vulnerable Software and Affected Versions openSUSE versions (affected versions not specified) SUSE Linux Enterprise versions (affected versions not specified) X.Org X11 server (xserver) versions 7.1-1.1.0 and other versions before 20070403

Description The issue involves multiple vulnerabilities in various packages of openSUSE and SUSE Linux Enterprise operating systems, which can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. Specifically, an integer overflow in the ALLOCATE LOCAL in the ProcXCMiscGetXIDList function in the XC-MISC extension in the X.Org X11 server allows remote authenticated users to execute arbitrary code via a large expression, resulting in memory corruption.

Recommendations For openSUSE, update to a version that contains a fix for this vulnerability. For SUSE Linux Enterprise, update to a version that contains a fix for this vulnerability. For X.Org X11 server (xserver), update to a version after 20070403. At the moment, there is no information about a newer version that contains a fix for this vulnerability for some of the affected packages, so it is recommended to monitor the official sources for updates.