{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2006-3740","title":"Title"},{"category":"description","text":"Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2006-3740","url":"https://www.suse.com/security/cve/CVE-2006-3740"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 202367 for CVE-2006-3740","url":"https://bugzilla.suse.com/202367"},{"category":"external","summary":"SUSE Bug 243978 for CVE-2006-3740","url":"https://bugzilla.suse.com/243978"},{"category":"external","summary":"Advisory link for SUSE-SR:2006:023","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XXDYUKF4GZXEMMP65JJW6ANQTD6L36H2/#XXDYUKF4GZXEMMP65JJW6ANQTD6L36H2"}],"title":"SUSE CVE CVE-2006-3740","tracking":{"current_release_date":"2023-12-09T03:42:11Z","generator":{"date":"2023-02-15T06:14:44Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2006-3740","initial_release_date":"2023-02-15T06:14:44Z","revision_history":[{"date":"2023-02-15T06:14:44Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:20:19Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:42:11Z","number":"4","summary":"Current version"}],"status":"interim","version":"4"}}}