CVE-2007-2437 Common Vulnerabilities and Exposures

Upstream information

CVE-2007-2437 at MITRE

Description

The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

CVSS v2 Scores
CVSS detail	National Vulnerability Database
Base Score	5.5
Vector	AV:A/AC:L/Au:S/C:N/I:N/A:C
Access Vector	Adjacent Network
Access Complexity	Low
Authentication	Single
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Complete

SUSE Bugzilla entry: 259290 [RESOLVED / FIXED]

No SUSE Security Announcements cross referenced.

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 03:24:30 2013
CVE page last modified: Mon Oct 6 18:14:56 2025