CVE-2007-6428
EPSS 2.5%Published: 1/18/2008Modified: 4/28/2026
Description
The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.
Affected packages (1)
- Debian/xorg-serverfrom 0, < 2:1.4.1~git20080105-2