Published: 24/01/2011 Updated: 13/02/2023

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

VMScore: 765

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and previous versions, when the FreeType2 backend is enabled, allows user-assisted remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.

Vulnerable Product	Search on Vulmon	Subscribe to Product
pango pango 1.7
pango pango 1.5
pango pango 1.6
pango pango 1.17
pango pango 0.23
pango pango 1.9
pango pango 1.11
pango pango 0.22
pango pango 1.14
pango pango 1.21
pango pango 1.27
pango pango 1.1
pango pango 1.26
pango pango 1.16
pango pango 0.24
pango pango 1.8
pango pango 0.25
pango pango 1.4
pango pango 1.24
pango pango 1.19
pango pango 1.0
pango pango 1.15
pango pango 1.25
pango pango 1.10
pango pango 1.2
pango pango 1.3
pango pango 1.22
pango pango 1.18
pango pango 0.21
pango pango 0.26
pango pango 0.20
pango pango 1.12
pango pango 1.13
pango pango 1.23
pango pango 1.20
gnome pango
gnome pango 1.28.2
gnome pango 1.28.0
gnome pango 1.28.1

Debian Bug report logs - #610792 CVE-2011-0020: heap corruption in libpango Package: pango10; Maintainer for pango10 is Debian GNOME Maintainers <pkg-gnome-maintainers@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Sat, 22 Jan 2011 14:36:01 UTC Severity: grave Tags: security, squee ...

Marc Schoenefeld discovered that Pango incorrectly handled certain Glyph Definition (GDEF) tables If a user were tricked into displaying text with a specially-crafted font, an attacker could cause Pango to crash, resulting in a denial of service This issue only affected Ubuntu 804 LTS and 910 (CVE-2010-0421) ...

source: wwwsecurityfocuscom/bid/45842/info Pango is prone to a remote heap-corruption vulnerability An attacker can exploit this issue to execute arbitrary code within the context of the affected application Failed exploit attempts will result in a denial-of-service condition githubcom/offensive-security/exploitdb-bin-sploit ...

CWE-119 http://www.vupen.com/english/advisories/2011/0186 https://bugzilla.redhat.com/show_bug.cgi?id=671122 https://bugs.launchpad.net/ubuntu/+source/pango1.0/+bug/696616 http://openwall.com/lists/oss-security/2011/01/18/6 http://openwall.com/lists/oss-security/2011/01/20/2 http://www.securityfocus.com/bid/45842 http://osvdb.org/70596 http://www.redhat.com/support/errata/RHSA-2011-0180.html http://www.securitytracker.com/id?1024994 http://secunia.com/advisories/43100 http://www.vupen.com/english/advisories/2011/0238 http://secunia.com/advisories/42934 https://bugzilla.gnome.org/show_bug.cgi?id=639882 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html https://exchange.xforce.ibmcloud.com/vulnerabilities/64832 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610792 https://usn.ubuntu.com/1082-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/35232/

CVE-2011-0020

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect