Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2178-1:2B019
HistoryMar 02, 2011 - 8:11 p.m.

[SECURITY] [DSA 2178-1] pango1.0 security update

2011-03-0220:11:06
lists.debian.org
10

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.136 Low

EPSS

Percentile

95.6%

JSON

Debian Security Advisory DSA-2178-1 [email protected]
http://www.debian.org/security/ Florian Weimer
March 02, 2011 http://www.debian.org/security/faq

Package : pango1.0
Vulnerability : NULL pointer dereference
Problem type : remote
Debian-specific: no
CVE ID : CVE-2011-0064

It was discovered that pango did not check for memory allocation
failures, causing a NULL pointer dereference with an adjustable
offset. This can lead to application crashes and potentially
arbitrary code execution.

The oldstable distribution (lenny) is not affected by this problem.

For the stable distribution (squeeze), this problem has been fixed in
version 1.28.3-1+squeeze2.

For the testing distribution (wheezy) and the unstable distribution (sid),
this problem will be fixed soon.

We recommend that you upgrade your pango1.0 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

Related

openvas 10
debiancve 1
fedora 1
nessus 11
redhat 1
ubuntucve 1
oraclelinux 1
securityvulns 3
cvelist 1
cve 1
prion 1
ubuntu 1
gentoo 1
rosalinux 1
openvas
openvas
Debian Security Advisory DSA 2178-1 (pango1.0)
2011-03-09 00:00:00
Oracle: Security Advisory (ELSA-2011-0309)
2015-10-06 00:00:00
Debian: Security Advisory (DSA-2178-1)
2011-03-09 00:00:00
debiancve
debiancve
CVE-2011-0064
2011-03-07 21:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: pango-1.28.1-5.fc14
2011-03-16 19:54:59
nessus
nessus
Debian DSA-2178-1 : pango1.0 - NULL pointer dereference
2011-03-03 00:00:00
Fedora 14 : pango-1.28.1-5.fc14 (2011-3194)
2011-03-17 00:00:00
Scientific Linux Security Update : pango on SL6.x i386/x86_64
2012-08-01 00:00:00
redhat
redhat
(RHSA-2011:0309) Critical: pango security update
2011-03-01 00:00:00
ubuntucve
ubuntucve
CVE-2011-0064
2011-03-01 00:00:00
oraclelinux
oraclelinux
pango security update
2011-03-01 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2178-1] pango1.0 security update
2011-03-03 00:00:00
Pango library NULL pointer dereference
2011-03-03 00:00:00
ESA-2015-002: Unisphere Central Security Update for Multiple Vulnerabilities
2015-02-02 00:00:00
cvelist
cvelist
CVE-2011-0064
2011-03-07 20:00:00
cve
cve
CVE-2011-0064
2011-03-07 21:00:00
prion
prion
Null pointer dereference
2011-03-07 21:00:00
ubuntu
ubuntu
Pango vulnerabilities
2011-03-02 00:00:00
gentoo
gentoo
Pango: Multiple vulnerabilities
2014-05-17 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2371
2024-03-12 12:37:38

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.136 Low

EPSS

Percentile

95.6%

JSON
Related for DEBIAN:DSA-2178-1:2B019
openvas10debiancve1fedora1nessus11redhat1ubuntucve1oraclelinux1securityvulns3cvelist1cve1prion1ubuntu1gentoo1rosalinux1