CVE-2007-4730

N/A Unknown
Published: September 11, 2007 Modified: April 23, 2026
View on NVD

Description

Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://bugs.freedesktop.org/show_bug.cgi?id=7447
Source: cve@mitre.org
http://bugs.gentoo.org/show_bug.cgi?id=191964
Source: cve@mitre.org
http://lists.freedesktop.org/archives/xorg-announce/2007-September/000378.html
Source: cve@mitre.org
http://osvdb.org/37726
Source: cve@mitre.org
http://secunia.com/advisories/26743
Source: cve@mitre.org
Patch Vendor Advisory
http://secunia.com/advisories/26755
Source: cve@mitre.org
Patch Vendor Advisory
http://secunia.com/advisories/26763
Source: cve@mitre.org
http://secunia.com/advisories/26823
Source: cve@mitre.org
http://secunia.com/advisories/26859
Source: cve@mitre.org
http://secunia.com/advisories/26897
Source: cve@mitre.org
http://secunia.com/advisories/27147
Source: cve@mitre.org
http://secunia.com/advisories/27179
Source: cve@mitre.org
http://secunia.com/advisories/27228
Source: cve@mitre.org
http://secunia.com/advisories/30161
Source: cve@mitre.org
http://security.gentoo.org/glsa/glsa-200710-16.xml
Source: cve@mitre.org
http://support.avaya.com/elmodocs2/security/ASA-2007-394.htm
Source: cve@mitre.org
http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0187
Source: cve@mitre.org
http://www.debian.org/security/2007/dsa-1372
Source: cve@mitre.org
Patch
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml
Source: cve@mitre.org
http://www.mandriva.com/security/advisories?name=MDKSA-2007:178
Source: cve@mitre.org
http://www.mandriva.com/security/advisories?name=MDVSA-2008:022
Source: cve@mitre.org
http://www.novell.com/linux/security/advisories/2007_54_xorg.html
Source: cve@mitre.org
http://www.redhat.com/support/errata/RHSA-2007-0898.html
Source: cve@mitre.org
http://www.securityfocus.com/bid/25606
Source: cve@mitre.org
http://www.securitytracker.com/id?1018665
Source: cve@mitre.org
http://www.ubuntu.com/usn/usn-514-1
Source: cve@mitre.org
http://www.vupen.com/english/advisories/2007/3098
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/36535
Source: cve@mitre.org
https://issues.rpath.com/browse/RPL-1728
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10430
Source: cve@mitre.org
http://bugs.freedesktop.org/show_bug.cgi?id=7447
Source: af854a3a-2127-422b-91ae-364da2661108
http://bugs.gentoo.org/show_bug.cgi?id=191964
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.freedesktop.org/archives/xorg-announce/2007-September/000378.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://osvdb.org/37726
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26743
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://secunia.com/advisories/26755
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://secunia.com/advisories/26763
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26823
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26859
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26897
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/27147
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/27179
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/27228
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/30161
Source: af854a3a-2127-422b-91ae-364da2661108
http://security.gentoo.org/glsa/glsa-200710-16.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://support.avaya.com/elmodocs2/security/ASA-2007-394.htm
Source: af854a3a-2127-422b-91ae-364da2661108
http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0187
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.debian.org/security/2007/dsa-1372
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2007:178
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDVSA-2008:022
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.novell.com/linux/security/advisories/2007_54_xorg.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2007-0898.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/25606
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1018665
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ubuntu.com/usn/usn-514-1
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2007/3098
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/36535
Source: af854a3a-2127-422b-91ae-364da2661108
https://issues.rpath.com/browse/RPL-1728
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10430
Source: af854a3a-2127-422b-91ae-364da2661108

60 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.5%
40th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

x.org

Related CVEs

CVE-2026-40941 N/A
CVE-2026-40084 6.5
CVE-2026-40083 7.2
CVE-2026-40082 5.4
CVE-2026-40080 6.1