CVE-2006-3740 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-3740 Interim 1 4 2023-12-09T02:17:52Z current 2021-05-30T12:36:20Z 2023-12-09T02:17:52Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-3740 Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XXDYUKF4GZXEMMP65JJW6ANQTD6L36H2/#XXDYUKF4GZXEMMP65JJW6ANQTD6L36H2 E-Mail link for SUSE-SR:2006:023 https://www.suse.com/support/security/rating/ SUSE Security Ratings Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections. CVE-2006-3740 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C