CVE-2018-15120

🗓️ 24 Aug 2018 19:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 134 Views

Libpango in Pango 1.40.8-1.42.3 allows remote attackers to cause denial of service or other impact via crafted text.

Reporter	Title	Published	Views	Family All 41
0day.today	Libpango 1.40.8 - Denial of Service Exploit	28 Aug 201800:00	–	zdt
FreeBSD	pango -- remote DoS vulnerability	6 Aug 201800:00	–	freebsd
AlpineLinux	CVE-2018-15120	24 Aug 201819:00	–	alpinelinux
Cloud Foundry	USN-3750-1: Pango vulnerability \| Cloud Foundry	11 Sep 201800:00	–	cloudfoundry
Circl	CVE-2018-15120	28 Aug 201809:26	–	circl
CNVD	Pango Denial of Service Vulnerability	27 Aug 201800:00	–	cnvd
Cvelist	CVE-2018-15120	24 Aug 201819:00	–	cvelist
Debian CVE	CVE-2018-15120	24 Aug 201819:00	–	debiancve
Exploit DB	Libpango 1.40.8 - Denial of Service (PoC)	27 Aug 201800:00	–	exploitdb
Oracle linux	GNOME security, bug fix, and enhancement update	5 Nov 201800:00	–	oraclelinux

NVD

Node

gnome pangoRange1.40.8–1.42.3

Node

Source	Link
security	www.security.gentoo.org/glsa/201811-07
github	www.github.com/GNOME/pango/blob/1.42.4/NEWS
mail	www.mail.gnome.org/archives/distributor-list/2018-August/msg00001.html
usn	www.usn.ubuntu.com/3750-1/
52	www.52.117.224.77/xfce4-pdos.webm
reddit	www.reddit.com/r/PS4/comments/9o5efg/message_bricking_console_megathread/
i	www.i.redd.it/v7p4n2ptu0s11.jpg
exploit-db	www.exploit-db.com/exploits/45263
github	www.github.com/GNOME/pango/commit/71aaeaf020340412b8d012fe23a556c0420eda5f
ign	www.ign.com/articles/2018/10/16/ps4s-are-reportedly-being-bricked-and-sony-is-working-on-a-fix

21 Nov 2024 03:50Current

7High risk

Vulners AI Score7

CVSS 24.3

CVSS 3.16.5

EPSS0.05613