JVN/CVE Demo: Cveinfos

CVE

Id: 31496
CVE No.: CVE-2008-1379
Status: Candidate
Description: Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.
Phase: Assigned (20080318)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
337613	31496	CVE-2008-1379	IDEFENSE:20080611 Multiple Vendor X Server MIT-SHM Extension Information Disclosure Vulnerability	View
337614	31496	CVE-2008-1379	URL:http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=722	View
337615	31496	CVE-2008-1379	BUGTRAQ:20080620 rPSA-2008-0200-1 xorg-server	View
337616	31496	CVE-2008-1379	URL:http://www.securityfocus.com/archive/1/archive/1/493548/100/0/threaded	View
337617	31496	CVE-2008-1379	BUGTRAQ:20080621 rPSA-2008-0201-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs	View
337618	31496	CVE-2008-1379	URL:http://www.securityfocus.com/archive/1/archive/1/493550/100/0/threaded	View
337619	31496	CVE-2008-1379	MLIST:[xorg] 20080611 X.Org security advisory june 2008 - Multiple vulnerabilities in X server extensions	View
337620	31496	CVE-2008-1379	URL:http://lists.freedesktop.org/archives/xorg/2008-June/036026.html	View
337621	31496	CVE-2008-1379	CONFIRM:ftp://ftp.freedesktop.org/pub/xorg/X11R7.3/patches/xorg-xserver-1.4-cve-2008-1379.diff	View
337622	31496	CVE-2008-1379	CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0201	View
337623	31496	CVE-2008-1379	CONFIRM:https://issues.rpath.com/browse/RPL-2607	View
337624	31496	CVE-2008-1379	CONFIRM:https://issues.rpath.com/browse/RPL-2619	View
337625	31496	CVE-2008-1379	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2008-249.htm	View
337626	31496	CVE-2008-1379	CONFIRM:http://support.apple.com/kb/HT3438	View
337627	31496	CVE-2008-1379	APPLE:APPLE-SA-2009-02-12	View
337628	31496	CVE-2008-1379	URL:http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html	View
337629	31496	CVE-2008-1379	DEBIAN:DSA-1595	View
337630	31496	CVE-2008-1379	URL:http://www.debian.org/security/2008/dsa-1595	View
337631	31496	CVE-2008-1379	GENTOO:GLSA-200806-07	View
337632	31496	CVE-2008-1379	URL:http://security.gentoo.org/glsa/glsa-200806-07.xml	View
337633	31496	CVE-2008-1379	GENTOO:GLSA-200807-07	View
337634	31496	CVE-2008-1379	URL:http://www.gentoo.org/security/en/glsa/glsa-200807-07.xml	View
337635	31496	CVE-2008-1379	HP:HPSBUX02381	View
337636	31496	CVE-2008-1379	URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01543321	View
337637	31496	CVE-2008-1379	HP:SSRT080083	View
337638	31496	CVE-2008-1379	URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01543321	View
337639	31496	CVE-2008-1379	MANDRIVA:MDVSA-2008:116	View
337640	31496	CVE-2008-1379	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:116	View
337641	31496	CVE-2008-1379	MANDRIVA:MDVSA-2008:115	View
337642	31496	CVE-2008-1379	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:115	View
337643	31496	CVE-2008-1379	MANDRIVA:MDVSA-2008:179	View
337644	31496	CVE-2008-1379	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:179	View
337645	31496	CVE-2008-1379	REDHAT:RHSA-2008:0502	View
337646	31496	CVE-2008-1379	URL:http://rhn.redhat.com/errata/RHSA-2008-0502.html	View
337647	31496	CVE-2008-1379	REDHAT:RHSA-2008:0504	View
337648	31496	CVE-2008-1379	URL:http://rhn.redhat.com/errata/RHSA-2008-0504.html	View
337649	31496	CVE-2008-1379	REDHAT:RHSA-2008:0512	View
337650	31496	CVE-2008-1379	URL:http://rhn.redhat.com/errata/RHSA-2008-0512.html	View
337651	31496	CVE-2008-1379	REDHAT:RHSA-2008:0503	View
337652	31496	CVE-2008-1379	URL:http://www.redhat.com/support/errata/RHSA-2008-0503.html	View
337653	31496	CVE-2008-1379	SUNALERT:238686	View
337654	31496	CVE-2008-1379	URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-238686-1	View
337655	31496	CVE-2008-1379	SUSE:SUSE-SA:2008:027	View
337656	31496	CVE-2008-1379	URL:http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00002.html	View
337657	31496	CVE-2008-1379	SUSE:SUSE-SR:2008:019	View
337658	31496	CVE-2008-1379	URL:http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00005.html	View
337659	31496	CVE-2008-1379	UBUNTU:USN-616-1	View
337660	31496	CVE-2008-1379	URL:http://www.ubuntu.com/usn/usn-616-1	View
337661	31496	CVE-2008-1379	BID:29669	View
337662	31496	CVE-2008-1379	URL:http://www.securityfocus.com/bid/29669	View
337663	31496	CVE-2008-1379	OVAL:oval:org.mitre.oval:def:8966	View
337664	31496	CVE-2008-1379	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8966	View
337665	31496	CVE-2008-1379	SECUNIA:32545	View
337666	31496	CVE-2008-1379	URL:http://secunia.com/advisories/32545	View
337667	31496	CVE-2008-1379	VUPEN:ADV-2008-1803	View
337668	31496	CVE-2008-1379	URL:http://www.vupen.com/english/advisories/2008/1803	View
337669	31496	CVE-2008-1379	VUPEN:ADV-2008-1833	View
337670	31496	CVE-2008-1379	URL:http://www.vupen.com/english/advisories/2008/1833	View
337671	31496	CVE-2008-1379	VUPEN:ADV-2008-1983	View
337672	31496	CVE-2008-1379	URL:http://www.vupen.com/english/advisories/2008/1983/references	View
337673	31496	CVE-2008-1379	SECTRACK:1020246	View
337674	31496	CVE-2008-1379	URL:http://securitytracker.com/id?1020246	View
337675	31496	CVE-2008-1379	SECUNIA:30627	View
337676	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30627	View
337677	31496	CVE-2008-1379	SECUNIA:30628	View
337678	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30628	View
337679	31496	CVE-2008-1379	SECUNIA:30629	View
337680	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30629	View
337681	31496	CVE-2008-1379	SECUNIA:30630	View
337682	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30630	View
337683	31496	CVE-2008-1379	SECUNIA:30637	View
337684	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30637	View
337685	31496	CVE-2008-1379	SECUNIA:30659	View
337686	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30659	View
337687	31496	CVE-2008-1379	SECUNIA:30664	View
337688	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30664	View
337689	31496	CVE-2008-1379	SECUNIA:30666	View
337690	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30666	View
337691	31496	CVE-2008-1379	SECUNIA:30671	View
337692	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30671	View
337693	31496	CVE-2008-1379	SECUNIA:30715	View
337694	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30715	View
337695	31496	CVE-2008-1379	SECUNIA:30772	View
337696	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30772	View
337697	31496	CVE-2008-1379	SECUNIA:30809	View
337698	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30809	View
337699	31496	CVE-2008-1379	SECUNIA:30843	View
337700	31496	CVE-2008-1379	URL:http://secunia.com/advisories/30843	View
337701	31496	CVE-2008-1379	SECUNIA:31109	View
337702	31496	CVE-2008-1379	URL:http://secunia.com/advisories/31109	View
337703	31496	CVE-2008-1379	SECUNIA:32099	View
337704	31496	CVE-2008-1379	URL:http://secunia.com/advisories/32099	View
337705	31496	CVE-2008-1379	SECUNIA:31025	View
337706	31496	CVE-2008-1379	URL:http://secunia.com/advisories/31025	View
337707	31496	CVE-2008-1379	SECUNIA:33937	View
337708	31496	CVE-2008-1379	URL:http://secunia.com/advisories/33937	View
337709	31496	CVE-2008-1379	VUPEN:ADV-2008-3000	View
337710	31496	CVE-2008-1379	URL:http://www.vupen.com/english/advisories/2008/3000	View
337711	31496	CVE-2008-1379	XF:xorg-fbshmputimage-information-disclosure(43016)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
47548	JVNDB-2008-002858	src_compile などで使用される ssl-cert.eclass における binpkg から鍵を抽出される脆弱性	Gentoo Linux の src_compile または src_install で使用される ssl-cert.eclass の docert 関数は、SSL 鍵を binpkg 内に格納するため、binpkg から鍵を抽出される、および複数のシステムが同一の SSL 鍵および証明書を伴う binpkg を使用する脆弱性が存在します。	CVE-2008-1383	31496	1.9		http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002858.html	View

Message	Memory use
Component initialization	1.41 MB
Controller action start	1.51 MB
Controller render start	2.45 MB
View render complete	3.02 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	49.35
Event: Controller.initialize	0.03
Event: Controller.startup	0.43
Controller action	469.25
Event: Controller.beforeRender	6.49
» Processing toolbar data	6.40
Rendering View	39.75
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	37.26
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	1.48
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.46
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/31496
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/31496
Remote Port	36523
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.104
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.95.84
Http Via	1.1 squid-proxy-5b5d847c96-t9wdc (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=ark8b5l3vqhsoctgjqlr0he9r6
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.104
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.104
Unique Id	aEWti6vzYoYqHiYZPkIovgAAAgQ
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.104
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.104
Redirect Unique Id	aEWti6vzYoYqHiYZPkIovgAAAgQ
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.104
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.104
Redirect Redirect Unique Id	aEWti6vzYoYqHiYZPkIovgAAAgQ
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1749396876.5945
Request Time	1749396876

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files