{"lastseen": "2020-10-01T05:15:27", "references": ["http://www.nessus.org/u?ea24731d", "http://www.nessus.org/u?5465d433"], "scheme": null, "pluginID": "56275", "description": "Updated evolution28-pango packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.", "edition": 22, "reporter": "This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "published": "2011-09-23T00:00:00", "title": "CentOS 4 : evolution28-pango (CESA-2011:1325)", "type": "nessus", "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3193"]}, {"type": "centos", "idList": ["CESA-2011:1327", "CESA-2011:1325", "CESA-2011:1326", "CESA-2011:1324"]}, {"type": "redhat", "idList": ["RHSA-2011:1327", "RHSA-2011:1323", "RHSA-2011:1326", "RHSA-2011:1325", "RHSA-2011:1324", "RHSA-2011:1328"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310880999", "OPENVAS:1361412562310881297", "OPENVAS:1361412562310870490", "OPENVAS:870490", "OPENVAS:1361412562310122085", "OPENVAS:881426", "OPENVAS:881308", "OPENVAS:881009", "OPENVAS:1361412562310881426", "OPENVAS:870488"]}, {"type": "nessus", "idList": ["SL_20110921_FRYSK_ON_SL4_X.NASL", "CENTOS_RHSA-2011-1327.NASL", "SL_20110921_EVOLUTION28_PANGO_ON_SL4_X.NASL", "ORACLELINUX_ELSA-2011-1327.NASL", "ORACLELINUX_ELSA-2011-1326.NASL", "REDHAT-RHSA-2011-1326.NASL", "REDHAT-RHSA-2011-1327.NASL", "SL_20110921_PANGO_ON_SL5_X.NASL", "REDHAT-RHSA-2011-1325.NASL", "ORACLELINUX_ELSA-2011-1325.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1323", "ELSA-2011-1326", "ELSA-2011-1327", "ELSA-2011-1324", "ELSA-2011-1328", "ELSA-2011-1325"]}, {"type": "debian", "idList": ["DEBIAN:DLA-117-1:79FF6"]}, {"type": "gentoo", "idList": ["GLSA-201311-14"]}, {"type": "ubuntu", "idList": ["USN-1504-1"]}], "modified": "2020-10-01T05:15:27", "rev": 2}, "score": {"value": 7.3, "vector": "NONE", "modified": "2020-10-01T05:15:27", "rev": 2}, "vulnersScore": 7.3}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:centos:centos:4", "p-cpe:/a:centos:centos:evolution28-pango", "p-cpe:/a:centos:centos:evolution28-pango-devel"], "id": "CENTOS_RHSA-2011-1325.NASL", "href": "https://www.tenable.com/plugins/nessus/56275", "viewCount": 1, "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1325 and \n# CentOS Errata and Security Advisory 2011:1325 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56275);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2019/10/25 13:36:06\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1325\");\n\n script_name(english:\"CentOS 4 : evolution28-pango (CESA-2011:1325)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated evolution28-pango packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2011-September/018070.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5465d433\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2011-September/018071.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ea24731d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected evolution28-pango packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:evolution28-pango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:evolution28-pango-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/09/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 4.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"evolution28-pango-1.14.9-13.el4_11\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"evolution28-pango-1.14.9-13.el4_11\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"evolution28-pango-devel-1.14.9-13.el4_11\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"evolution28-pango-devel-1.14.9-13.el4_11\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"evolution28-pango / evolution28-pango-devel\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}

{"cve": [{"lastseen": "2020-09-21T14:01:26", "description": "Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.", "edition": 3, "cvss3": {}, "published": "2012-06-16T00:55:00", "title": "CVE-2011-3193", "type": "cve", "cwe": ["CWE-787"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2011-3193"], "modified": "2020-08-04T13:20:00", "cpe": ["cpe:/o:redhat:enterprise_linux_desktop:5.0", "cpe:/o:redhat:enterprise_linux_eus:6.1", "cpe:/o:redhat:enterprise_linux_workstation:5.0", "cpe:/o:redhat:enterprise_linux_server:4.0", "cpe:/o:redhat:enterprise_linux_workstation:4.0", "cpe:/o:redhat:enterprise_linux_desktop:6.0", "cpe:/o:canonical:ubuntu_linux:11.04", "cpe:/o:opensuse:opensuse:11.3", "cpe:/o:opensuse:opensuse:11.4", "cpe:/o:redhat:enterprise_linux_server:5.0", "cpe:/o:canonical:ubuntu_linux:10.04", "cpe:/o:redhat:enterprise_linux_desktop:4.0", "cpe:/o:redhat:enterprise_linux_workstation:6.0", "cpe:/o:redhat:enterprise_linux_server:6.0"], "id": "CVE-2011-3193", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3193", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cpe23": ["cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_server:4.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_workstation:4.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_eus:6.1:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*"]}], "oraclelinux": [{"lastseen": "2019-05-29T18:35:03", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "[1.14.9-13.el4_11]\n- Add patch for CVE-2011-3193 (qt/harfbuzz buffer overflow).", "edition": 4, "modified": "2011-09-21T00:00:00", "published": "2011-09-21T00:00:00", "id": "ELSA-2011-1325", "href": "http://linux.oracle.com/errata/ELSA-2011-1325.html", "title": "evolution28-pango security update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:37:58", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "[1.14.9.8.0.1.el5_7.3]\n- Bump release\n[1.14.9.8.el5_1.3]\n- Prevent buffer overflow errors in harfbuzz module (CVE-2011-3193)\n- Resolves: #737819", "edition": 4, "modified": "2011-09-21T00:00:00", "published": "2011-09-21T00:00:00", "id": "ELSA-2011-1326", "href": "http://linux.oracle.com/errata/ELSA-2011-1326.html", "title": "pango security update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:39:24", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "[0.0.1.2007.08.03-7.el4]\n- CVE-2011-3193 for embedded pango/harfbuzz", "edition": 4, "modified": "2011-09-21T00:00:00", "published": "2011-09-21T00:00:00", "id": "ELSA-2011-1327", "href": "http://linux.oracle.com/errata/ELSA-2011-1327.html", "title": "frysk security update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:37:37", "bulletinFamily": "unix", "cvelist": ["CVE-2007-0242", "CVE-2011-3193"], "description": "[4.2.1-1.1]\n- Resolves: #737815, qt/harfbuzz buffer overflow, CVE-2011-3193\n- Resolves: #234633, UTF-8 overlong sequence decoding vulnerability, CVE-2007-0242", "edition": 4, "modified": "2011-09-21T00:00:00", "published": "2011-09-21T00:00:00", "id": "ELSA-2011-1324", "href": "http://linux.oracle.com/errata/ELSA-2011-1324.html", "title": "qt4 security update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:34:30", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193", "CVE-2011-3194"], "description": "[1:4.6.2-17.1]\n- Resolves: #rhbz737812\n fix multiple flaws in Qt\n CVE-2011-3193, CVE-2011-3194", "edition": 4, "modified": "2011-09-21T00:00:00", "published": "2011-09-21T00:00:00", "id": "ELSA-2011-1323", "href": "http://linux.oracle.com/errata/ELSA-2011-1323.html", "title": "qt security update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:34:21", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193", "CVE-2011-3194"], "description": "[4.6.2-20]\n- Resolves: #rhbz737813\n fix multiple flaws in Qt\n CVE-2011-3193, CVE-2011-3194\n[4.6.2-19]\n- Resolves: rhbz#679759, missing executable bit in qt-examples binaries\n- Resolves: rhbz#716694, move macros.qt4 to -devel\n- Resolves: rhbz#680088, rpmdiff failure\n[4.6.2-18]\n- Resolves: rhbz#562132, Malayalam rakar is not getting reordered", "edition": 4, "modified": "2011-12-14T00:00:00", "published": "2011-12-14T00:00:00", "id": "ELSA-2011-1328", "href": "http://linux.oracle.com/errata/ELSA-2011-1328.html", "title": "qt security update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "centos": [{"lastseen": "2019-12-20T18:26:07", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "**CentOS Errata and Security Advisory** CESA-2011:1326\n\n\nPango is a library used for the layout and rendering of internationalized\ntext.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially-crafted font file with\nan application that uses Pango, it could cause the application to crash or,\npossibly, execute arbitrary code with the privileges of the user running\nthe application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing this\nupdate, you must restart your system or restart the X server for the update\nto take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/029790.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/029791.html\n\n**Affected packages:**\npango\npango-devel\n\n**Upstream details at:**\n", "edition": 3, "modified": "2011-09-22T03:15:49", "published": "2011-09-22T03:15:49", "href": "http://lists.centos.org/pipermail/centos-announce/2011-September/029790.html", "id": "CESA-2011:1326", "title": "pango security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-12-20T18:26:43", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "**CentOS Errata and Security Advisory** CESA-2011:1327\n\n\nfrysk is an execution-analysis technology implemented using native Java and\nC++. It provides developers and system administrators with the ability to\nexamine and analyze multi-host, multi-process, and multithreaded systems\nwhile they are running. frysk is released as a Technology Preview for Red\nHat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were used\nto debug or trace a process that uses HarfBuzz while it loaded a\nspecially-crafted font file, it could cause the application to crash or,\npossibly, execute arbitrary code with the privileges of the user running\nthe application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/030110.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/030111.html\n\n**Affected packages:**\nfrysk\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1327.html", "edition": 3, "modified": "2011-09-22T20:53:51", "published": "2011-09-22T20:50:51", "href": "http://lists.centos.org/pipermail/centos-announce/2011-September/030110.html", "id": "CESA-2011:1327", "title": "frysk security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-12-20T18:24:23", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "**CentOS Errata and Security Advisory** CESA-2011:1325\n\n\nPango is a library used for the layout and rendering of internationalized\ntext.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially-crafted font file with\nan application that uses Pango, it could cause the application to crash or,\npossibly, execute arbitrary code with the privileges of the user running\nthe application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue. After\ninstalling this update, you must restart your system or restart the X\nserver for the update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/030108.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/030109.html\n\n**Affected packages:**\nevolution28-pango\nevolution28-pango-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1325.html", "edition": 3, "modified": "2011-09-22T20:49:07", "published": "2011-09-22T20:48:41", "href": "http://lists.centos.org/pipermail/centos-announce/2011-September/030108.html", "id": "CESA-2011:1325", "title": "evolution28 security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-12-20T18:27:35", "bulletinFamily": "unix", "cvelist": ["CVE-2007-0242", "CVE-2011-3193"], "description": "**CentOS Errata and Security Advisory** CESA-2011:1324\n\n\nQt 4 is a software toolkit that simplifies the task of writing and\nmaintaining GUI (Graphical User Interface) applications for the X Window\nSystem. HarfBuzz is an OpenType text shaping engine.\n\nA flaw in the way Qt 4 expanded certain UTF-8 characters could be used to\nprevent a Qt 4 based application from properly sanitizing user input.\nDepending on the application, this could allow an attacker to perform\ndirectory traversal, or for web applications, a cross-site scripting (XSS)\nattack. (CVE-2007-0242)\n\nA buffer overflow flaw was found in the harfbuzz module in Qt 4. If a user\nloaded a specially-crafted font file with an application linked against Qt\n4, it could cause the application to crash or, possibly, execute arbitrary\ncode with the privileges of the user running the application.\n(CVE-2011-3193)\n\nUsers of Qt 4 should upgrade to these updated packages, which contain\nbackported patches to correct these issues. All running applications linked\nagainst Qt 4 libraries must be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/029792.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-September/029793.html\n\n**Affected packages:**\nqt4\nqt4-devel\nqt4-doc\nqt4-mysql\nqt4-odbc\nqt4-postgresql\nqt4-sqlite\n\n**Upstream details at:**\n", "edition": 3, "modified": "2011-09-22T03:19:28", "published": "2011-09-22T03:19:27", "href": "http://lists.centos.org/pipermail/centos-announce/2011-September/029792.html", "id": "CESA-2011:1324", "title": "qt4 security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "openvas": [{"lastseen": "2019-05-29T18:36:00", "description": "Oracle Linux Local Security Checks ELSA-2011-1326", "edition": 7, "published": "2015-10-06T00:00:00", "title": "Oracle Linux Local Check: ELSA-2011-1326", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2018-09-28T00:00:00", "id": "OPENVAS:1361412562310122085", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122085", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2011-1326.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122085\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:12:50 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2011-1326\");\n script_tag(name:\"insight\", value:\"ELSA-2011-1326 - pango security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2011-1326\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2011-1326.html\");\n script_cve_id(\"CVE-2011-3193\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"pango\", rpm:\"pango~1.14.9~8.0.1.el5_7.3\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"pango-devel\", rpm:\"pango-devel~1.14.9~8.0.1.el5_7.3\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:38:45", "description": "The remote host is missing an update for the ", "edition": 7, "published": "2012-07-30T00:00:00", "title": "CentOS Update for frysk CESA-2011:1327 centos4 x86_64", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310881297", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881297", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for frysk CESA-2011:1327 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-September/018073.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881297\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:19:36 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2011-3193\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:1327\");\n script_name(\"CentOS Update for frysk CESA-2011:1327 centos4 x86_64\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'frysk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS4\");\n script_tag(name:\"affected\", value:\"frysk on CentOS 4\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"insight\", value:\"frysk is an execution-analysis technology implemented using native Java and\n C++. It provides developers and system administrators with the ability to\n examine and analyze multi-host, multi-process, and multithreaded systems\n while they are running. frysk is released as a Technology Preview for Red\n Hat Enterprise Linux 4.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in the embedded Pango library. If a frysk application were used\n to debug or trace a process that uses HarfBuzz while it loaded a\n specially-crafted font file, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n\n Users of frysk are advised to upgrade to this updated package, which\n contains a backported patch to correct this issue. All running frysk\n applications must be restarted for this update to take effect.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"frysk\", rpm:\"frysk~0.0.1.2007.08.03~8.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2017-07-27T10:55:29", "description": "Check for the Version of evolution28-pango", "edition": 2, "published": "2011-09-23T00:00:00", "title": "RedHat Update for evolution28-pango RHSA-2011:1325-01", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2017-07-12T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870490", "id": "OPENVAS:870490", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for evolution28-pango RHSA-2011:1325-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Pango is a library used for the layout and rendering of internationalized\n text.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in Pango. If a user loaded a specially-crafted font file with\n an application that uses Pango, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n \n Users of evolution28-pango are advised to upgrade to these updated\n packages, which contain a backported patch to resolve this issue. After\n installing this update, you must restart your system or restart the X\n server for the update to take effect.\";\n\ntag_affected = \"evolution28-pango on Red Hat Enterprise Linux AS version 4,\n Red Hat Enterprise Linux ES version 4,\n Red Hat Enterprise Linux WS version 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-September/msg00037.html\");\n script_id(870490);\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_version(\"$Revision: 6685 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-09-23 16:39:49 +0200 (Fri, 23 Sep 2011)\");\n script_xref(name: \"RHSA\", value: \"2011:1325-01\");\n script_cve_id(\"CVE-2011-3193\");\n script_name(\"RedHat Update for evolution28-pango RHSA-2011:1325-01\");\n\n script_summary(\"Check for the Version of evolution28-pango\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_4\")\n{\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango\", rpm:\"evolution28-pango~1.14.9~13.el4_11\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango-debuginfo\", rpm:\"evolution28-pango-debuginfo~1.14.9~13.el4_11\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango-devel\", rpm:\"evolution28-pango-devel~1.14.9~13.el4_11\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-27T10:55:23", "description": "Check for the Version of frysk", "edition": 2, "published": "2011-09-23T00:00:00", "title": "RedHat Update for frysk RHSA-2011:1327-01", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2017-07-12T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870488", "id": "OPENVAS:870488", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for frysk RHSA-2011:1327-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"frysk is an execution-analysis technology implemented using native Java and\n C++. It provides developers and system administrators with the ability to\n examine and analyze multi-host, multi-process, and multithreaded systems\n while they are running. frysk is released as a Technology Preview for Red\n Hat Enterprise Linux 4.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in the embedded Pango library. If a frysk application were used\n to debug or trace a process that uses HarfBuzz while it loaded a\n specially-crafted font file, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n \n Users of frysk are advised to upgrade to this updated package, which\n contains a backported patch to correct this issue. All running frysk\n applications must be restarted for this update to take effect.\";\n\ntag_affected = \"frysk on Red Hat Enterprise Linux AS version 4,\n Red Hat Enterprise Linux ES version 4,\n Red Hat Enterprise Linux WS version 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-September/msg00039.html\");\n script_id(870488);\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_version(\"$Revision: 6685 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-09-23 16:39:49 +0200 (Fri, 23 Sep 2011)\");\n script_xref(name: \"RHSA\", value: \"2011:1327-01\");\n script_cve_id(\"CVE-2011-3193\");\n script_name(\"RedHat Update for frysk RHSA-2011:1327-01\");\n\n script_summary(\"Check for the Version of frysk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_4\")\n{\n\n if ((res = isrpmvuln(pkg:\"frysk\", rpm:\"frysk~0.0.1.2007.08.03~8.el4\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"frysk-debuginfo\", rpm:\"frysk-debuginfo~0.0.1.2007.08.03~8.el4\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:39:47", "description": "The remote host is missing an update for the ", "edition": 8, "published": "2011-09-23T00:00:00", "title": "CentOS Update for pango CESA-2011:1326 centos5 i386", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310880999", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880999", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for pango CESA-2011:1326 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-September/017752.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.880999\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-09-23 16:39:49 +0200 (Fri, 23 Sep 2011)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:1326\");\n script_cve_id(\"CVE-2011-3193\");\n script_name(\"CentOS Update for pango CESA-2011:1326 centos5 i386\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'pango'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS5\");\n script_tag(name:\"affected\", value:\"pango on CentOS 5\");\n script_tag(name:\"insight\", value:\"Pango is a library used for the layout and rendering of internationalized\n text.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in Pango. If a user loaded a specially-crafted font file with\n an application that uses Pango, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n\n Users of pango are advised to upgrade to these updated packages, which\n contain a backported patch to resolve this issue. After installing this\n update, you must restart your system or restart the X server for the update\n to take effect.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"pango\", rpm:\"pango~1.14.9~8.el5.centos.3\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"pango-devel\", rpm:\"pango-devel~1.14.9~8.el5.centos.3\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2017-07-25T10:55:45", "description": "Check for the Version of frysk", "edition": 2, "published": "2011-09-23T00:00:00", "title": "CentOS Update for frysk CESA-2011:1327 centos4 i386", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=880997", "id": "OPENVAS:880997", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for frysk CESA-2011:1327 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"frysk is an execution-analysis technology implemented using native Java and\n C++. It provides developers and system administrators with the ability to\n examine and analyze multi-host, multi-process, and multithreaded systems\n while they are running. frysk is released as a Technology Preview for Red\n Hat Enterprise Linux 4.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in the embedded Pango library. If a frysk application were used\n to debug or trace a process that uses HarfBuzz while it loaded a\n specially-crafted font file, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n \n Users of frysk are advised to upgrade to this updated package, which\n contains a backported patch to correct this issue. All running frysk\n applications must be restarted for this update to take effect.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"frysk on CentOS 4\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-September/018072.html\");\n script_id(880997);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-09-23 16:39:49 +0200 (Fri, 23 Sep 2011)\");\n script_xref(name: \"CESA\", value: \"2011:1327\");\n script_cve_id(\"CVE-2011-3193\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"CentOS Update for frysk CESA-2011:1327 centos4 i386\");\n\n script_summary(\"Check for the Version of frysk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"frysk\", rpm:\"frysk~0.0.1.2007.08.03~8.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-02T10:58:06", "description": "Check for the Version of evolution28-pango", "edition": 3, "published": "2012-07-30T00:00:00", "title": "CentOS Update for evolution28-pango CESA-2011:1325 centos4 x86_64", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2017-12-28T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881308", "id": "OPENVAS:881308", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for evolution28-pango CESA-2011:1325 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Pango is a library used for the layout and rendering of internationalized\n text.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in Pango. If a user loaded a specially-crafted font file with\n an application that uses Pango, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n \n Users of evolution28-pango are advised to upgrade to these updated\n packages, which contain a backported patch to resolve this issue. After\n installing this update, you must restart your system or restart the X\n server for the update to take effect.\";\n\ntag_affected = \"evolution28-pango on CentOS 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-September/018071.html\");\n script_id(881308);\n script_version(\"$Revision: 8253 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-28 07:29:51 +0100 (Thu, 28 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:20:19 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2011-3193\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:1325\");\n script_name(\"CentOS Update for evolution28-pango CESA-2011:1325 centos4 x86_64\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of evolution28-pango\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango\", rpm:\"evolution28-pango~1.14.9~13.el4_11\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango-devel\", rpm:\"evolution28-pango-devel~1.14.9~13.el4_11\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:55:40", "description": "Check for the Version of evolution28-pango", "edition": 2, "published": "2011-09-23T00:00:00", "title": "CentOS Update for evolution28-pango CESA-2011:1325 centos4 i386", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881009", "id": "OPENVAS:881009", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for evolution28-pango CESA-2011:1325 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Pango is a library used for the layout and rendering of internationalized\n text.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in Pango. If a user loaded a specially-crafted font file with\n an application that uses Pango, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n \n Users of evolution28-pango are advised to upgrade to these updated\n packages, which contain a backported patch to resolve this issue. After\n installing this update, you must restart your system or restart the X\n server for the update to take effect.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"evolution28-pango on CentOS 4\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-September/018070.html\");\n script_id(881009);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-09-23 16:39:49 +0200 (Fri, 23 Sep 2011)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:1325\");\n script_cve_id(\"CVE-2011-3193\");\n script_name(\"CentOS Update for evolution28-pango CESA-2011:1325 centos4 i386\");\n\n script_summary(\"Check for the Version of evolution28-pango\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango\", rpm:\"evolution28-pango~1.14.9~13.el4_11\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango-devel\", rpm:\"evolution28-pango-devel~1.14.9~13.el4_11\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:39:46", "description": "The remote host is missing an update for the ", "edition": 8, "published": "2011-09-23T00:00:00", "title": "RedHat Update for evolution28-pango RHSA-2011:1325-01", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2018-11-23T00:00:00", "id": "OPENVAS:1361412562310870490", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870490", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for evolution28-pango RHSA-2011:1325-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2011-September/msg00037.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870490\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-09-23 16:39:49 +0200 (Fri, 23 Sep 2011)\");\n script_xref(name:\"RHSA\", value:\"2011:1325-01\");\n script_cve_id(\"CVE-2011-3193\");\n script_name(\"RedHat Update for evolution28-pango RHSA-2011:1325-01\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'evolution28-pango'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_4\");\n script_tag(name:\"affected\", value:\"evolution28-pango on Red Hat Enterprise Linux AS version 4,\n Red Hat Enterprise Linux ES version 4,\n Red Hat Enterprise Linux WS version 4\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Pango is a library used for the layout and rendering of internationalized\n text.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in Pango. If a user loaded a specially-crafted font file with\n an application that uses Pango, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n\n Users of evolution28-pango are advised to upgrade to these updated\n packages, which contain a backported patch to resolve this issue. After\n installing this update, you must restart your system or restart the X\n server for the update to take effect.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_4\")\n{\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango\", rpm:\"evolution28-pango~1.14.9~13.el4_11\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango-debuginfo\", rpm:\"evolution28-pango-debuginfo~1.14.9~13.el4_11\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"evolution28-pango-devel\", rpm:\"evolution28-pango-devel~1.14.9~13.el4_11\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:38:57", "description": "The remote host is missing an update for the ", "edition": 7, "published": "2012-07-30T00:00:00", "title": "CentOS Update for pango CESA-2011:1326 centos5 x86_64", "type": "openvas", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310881426", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881426", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for pango CESA-2011:1326 centos5 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-September/017753.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881426\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:50:37 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2011-3193\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:1326\");\n script_name(\"CentOS Update for pango CESA-2011:1326 centos5 x86_64\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'pango'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS5\");\n script_tag(name:\"affected\", value:\"pango on CentOS 5\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"insight\", value:\"Pango is a library used for the layout and rendering of internationalized\n text.\n\n A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\n engine used in Pango. If a user loaded a specially-crafted font file with\n an application that uses Pango, it could cause the application to crash or,\n possibly, execute arbitrary code with the privileges of the user running\n the application. (CVE-2011-3193)\n\n Users of pango are advised to upgrade to these updated packages, which\n contain a backported patch to resolve this issue. After installing this\n update, you must restart your system or restart the X server for the update\n to take effect.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"pango\", rpm:\"pango~1.14.9~8.el5.centos.3\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"pango-devel\", rpm:\"pango-devel~1.14.9~8.el5.centos.3\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "nessus": [{"lastseen": "2020-10-01T01:55:14", "description": "Updated evolution28-pango packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.", "edition": 23, "published": "2011-09-22T00:00:00", "title": "RHEL 4 : evolution28-pango (RHSA-2011:1325)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:4", "p-cpe:/a:redhat:enterprise_linux:evolution28-pango-devel", "p-cpe:/a:redhat:enterprise_linux:evolution28-pango"], "id": "REDHAT-RHSA-2011-1325.NASL", "href": "https://www.tenable.com/plugins/nessus/56252", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1325. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56252);\n script_version (\"1.17\");\n script_cvs_date(\"Date: 2019/10/25 13:36:16\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1325\");\n\n script_name(english:\"RHEL 4 : evolution28-pango (RHSA-2011:1325)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated evolution28-pango packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3193\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1325\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected evolution28-pango and / or evolution28-pango-devel\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:evolution28-pango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:evolution28-pango-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 4.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1325\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL4\", reference:\"evolution28-pango-1.14.9-13.el4_11\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"evolution28-pango-devel-1.14.9-13.el4_11\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"evolution28-pango / evolution28-pango-devel\");\n }\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T01:34:59", "description": "From Red Hat Security Advisory 2011:1325 :\n\nUpdated evolution28-pango packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.", "edition": 20, "published": "2013-07-12T00:00:00", "title": "Oracle Linux 4 : evolution28-pango (ELSA-2011-1325)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:evolution28-pango", "p-cpe:/a:oracle:linux:evolution28-pango-devel", "cpe:/o:oracle:linux:4"], "id": "ORACLELINUX_ELSA-2011-1325.NASL", "href": "https://www.tenable.com/plugins/nessus/68355", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1325 and \n# Oracle Linux Security Advisory ELSA-2011-1325 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68355);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1325\");\n\n script_name(english:\"Oracle Linux 4 : evolution28-pango (ELSA-2011-1325)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1325 :\n\nUpdated evolution28-pango packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-September/002370.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected evolution28-pango packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:evolution28-pango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:evolution28-pango-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 4\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL4\", reference:\"evolution28-pango-1.14.9-13.el4_11\")) flag++;\nif (rpm_check(release:\"EL4\", reference:\"evolution28-pango-devel-1.14.9-13.el4_11\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"evolution28-pango / evolution28-pango-devel\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T02:33:49", "description": "Pango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.", "edition": 20, "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : evolution28-pango on SL4.x i386/x86_64", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20110921_EVOLUTION28_PANGO_ON_SL4_X.NASL", "href": "https://www.tenable.com/plugins/nessus/61137", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61137);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2019/10/25 13:36:20\");\n\n script_cve_id(\"CVE-2011-3193\");\n\n script_name(english:\"Scientific Linux Security Update : evolution28-pango on SL4.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Pango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue.\nAfter installing this update, you must restart your system or restart\nthe X server for the update to take effect.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1109&L=scientific-linux-errata&T=0&P=3078\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?3e184dd3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected evolution28-pango, evolution28-pango-debuginfo and\n/ or evolution28-pango-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL4\", reference:\"evolution28-pango-1.14.9-13.el4_11\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"evolution28-pango-debuginfo-1.14.9-13.el4_11\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"evolution28-pango-devel-1.14.9-13.el4_11\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T02:33:49", "description": "frysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Scientific Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.", "edition": 20, "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : frysk on SL4.x i386/x86_64", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20110921_FRYSK_ON_SL4_X.NASL", "href": "https://www.tenable.com/plugins/nessus/61138", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61138);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2019/10/25 13:36:20\");\n\n script_cve_id(\"CVE-2011-3193\");\n\n script_name(english:\"Scientific Linux Security Update : frysk on SL4.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"frysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Scientific Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1109&L=scientific-linux-errata&T=0&P=3215\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6ff60079\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected frysk and / or frysk-debuginfo packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL4\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"frysk-debuginfo-0.0.1.2007.08.03-8.el4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T01:34:59", "description": "From Red Hat Security Advisory 2011:1326 :\n\nUpdated pango packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing\nthis update, you must restart your system or restart the X server for\nthe update to take effect.", "edition": 20, "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 : pango (ELSA-2011-1326)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:pango", "p-cpe:/a:oracle:linux:pango-devel"], "id": "ORACLELINUX_ELSA-2011-1326.NASL", "href": "https://www.tenable.com/plugins/nessus/68356", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1326 and \n# Oracle Linux Security Advisory ELSA-2011-1326 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68356);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1326\");\n\n script_name(english:\"Oracle Linux 5 : pango (ELSA-2011-1326)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1326 :\n\nUpdated pango packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing\nthis update, you must restart your system or restart the X server for\nthe update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-September/002369.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected pango packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:pango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:pango-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL5\", reference:\"pango-1.14.9-8.0.1.el5_7.3\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"pango-devel-1.14.9-8.0.1.el5_7.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"pango / pango-devel\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T02:33:50", "description": "Pango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing\nthis update, you must restart your system or restart the X server for\nthe update to take effect.", "edition": 20, "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : pango on SL5.x i386/x86_64", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20110921_PANGO_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/nessus/61139", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61139);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2019/10/25 13:36:20\");\n\n script_cve_id(\"CVE-2011-3193\");\n\n script_name(english:\"Scientific Linux Security Update : pango on SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Pango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing\nthis update, you must restart your system or restart the X server for\nthe update to take effect.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1109&L=scientific-linux-errata&T=0&P=2831\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a35940f7\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected pango, pango-debuginfo and / or pango-devel\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"pango-1.14.9-8.el5_7.3\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"pango-debuginfo-1.14.9-8.el5_7.3\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"pango-devel-1.14.9-8.el5_7.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T01:35:00", "description": "From Red Hat Security Advisory 2011:1327 :\n\nAn updated frysk package that fixes one security issue is now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nfrysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Red Hat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.", "edition": 19, "published": "2013-07-12T00:00:00", "title": "Oracle Linux 4 : frysk (ELSA-2011-1327)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:frysk"], "id": "ORACLELINUX_ELSA-2011-1327.NASL", "href": "https://www.tenable.com/plugins/nessus/68357", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1327 and \n# Oracle Linux Security Advisory ELSA-2011-1327 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68357);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1327\");\n\n script_name(english:\"Oracle Linux 4 : frysk (ELSA-2011-1327)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1327 :\n\nAn updated frysk package that fixes one security issue is now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nfrysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Red Hat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-September/002371.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected frysk package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:frysk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 4\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"frysk\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T05:15:28", "description": "An updated frysk package that fixes one security issue is now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nfrysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Red Hat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.", "edition": 21, "published": "2011-09-23T00:00:00", "title": "CentOS 4 : frysk (CESA-2011:1327)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:centos:centos:4", "p-cpe:/a:centos:centos:frysk"], "id": "CENTOS_RHSA-2011-1327.NASL", "href": "https://www.tenable.com/plugins/nessus/56276", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1327 and \n# CentOS Errata and Security Advisory 2011:1327 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56276);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/10/25 13:36:06\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1327\");\n\n script_name(english:\"CentOS 4 : frysk (CESA-2011:1327)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An updated frysk package that fixes one security issue is now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nfrysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Red Hat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2011-September/018072.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?99420148\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2011-September/018073.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?d0d2dfed\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected frysk package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:frysk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/09/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 4.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"frysk\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T01:55:15", "description": "An updated frysk package that fixes one security issue is now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nfrysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Red Hat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.", "edition": 22, "published": "2011-09-22T00:00:00", "title": "RHEL 4 : frysk (RHSA-2011:1327)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:4", "p-cpe:/a:redhat:enterprise_linux:frysk"], "id": "REDHAT-RHSA-2011-1327.NASL", "href": "https://www.tenable.com/plugins/nessus/56254", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1327. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56254);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2019/10/25 13:36:16\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1327\");\n\n script_name(english:\"RHEL 4 : frysk (RHSA-2011:1327)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An updated frysk package that fixes one security issue is now\navailable for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nfrysk is an execution-analysis technology implemented using native\nJava and C++. It provides developers and system administrators with\nthe ability to examine and analyze multi-host, multi-process, and\nmultithreaded systems while they are running. frysk is released as a\nTechnology Preview for Red Hat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were\nused to debug or trace a process that uses HarfBuzz while it loaded a\nspecially crafted font file, it could cause the application to crash\nor, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3193\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/support/offerings/techpreview/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1327\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected frysk package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:frysk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 4.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1327\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL4\", cpu:\"i386\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"frysk-0.0.1.2007.08.03-8.el4\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"frysk\");\n }\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-01T01:55:14", "description": "Updated pango packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing\nthis update, you must restart your system or restart the X server for\nthe update to take effect.", "edition": 23, "published": "2011-09-22T00:00:00", "title": "RHEL 5 : pango (RHSA-2011:1326)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-3193"], "modified": "2020-10-02T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:5", "p-cpe:/a:redhat:enterprise_linux:pango", "p-cpe:/a:redhat:enterprise_linux:pango-devel"], "id": "REDHAT-RHSA-2011-1326.NASL", "href": "https://www.tenable.com/plugins/nessus/56253", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1326. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56253);\n script_version (\"1.17\");\n script_cvs_date(\"Date: 2019/10/25 13:36:16\");\n\n script_cve_id(\"CVE-2011-3193\");\n script_xref(name:\"RHSA\", value:\"2011:1326\");\n\n script_name(english:\"RHEL 5 : pango (RHSA-2011:1326)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated pango packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nPango is a library used for the layout and rendering of\ninternationalized text.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially crafted font file\nwith an application that uses Pango, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the\nuser running the application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing\nthis update, you must restart your system or restart the X server for\nthe update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3193\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1326\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected pango and / or pango-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:pango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:pango-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/06/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/09/22\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1326\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", reference:\"pango-1.14.9-8.el5_7.3\")) flag++;\n if (rpm_check(release:\"RHEL5\", reference:\"pango-devel-1.14.9-8.el5_7.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"pango / pango-devel\");\n }\n}\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "redhat": [{"lastseen": "2019-08-13T18:46:07", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "frysk is an execution-analysis technology implemented using native Java and\nC++. It provides developers and system administrators with the ability to\nexamine and analyze multi-host, multi-process, and multithreaded systems\nwhile they are running. frysk is released as a Technology Preview for Red\nHat Enterprise Linux 4.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in the embedded Pango library. If a frysk application were used\nto debug or trace a process that uses HarfBuzz while it loaded a\nspecially-crafted font file, it could cause the application to crash or,\npossibly, execute arbitrary code with the privileges of the user running\nthe application. (CVE-2011-3193)\n\nUsers of frysk are advised to upgrade to this updated package, which\ncontains a backported patch to correct this issue. All running frysk\napplications must be restarted for this update to take effect.\n", "modified": "2017-09-08T12:12:10", "published": "2011-09-21T04:00:00", "id": "RHSA-2011:1327", "href": "https://access.redhat.com/errata/RHSA-2011:1327", "type": "redhat", "title": "(RHSA-2011:1327) Moderate: frysk security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:45:08", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "Pango is a library used for the layout and rendering of internationalized\ntext.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially-crafted font file with\nan application that uses Pango, it could cause the application to crash or,\npossibly, execute arbitrary code with the privileges of the user running\nthe application. (CVE-2011-3193)\n\nUsers of evolution28-pango are advised to upgrade to these updated\npackages, which contain a backported patch to resolve this issue. After\ninstalling this update, you must restart your system or restart the X\nserver for the update to take effect.\n", "modified": "2017-09-08T12:08:13", "published": "2011-09-21T04:00:00", "id": "RHSA-2011:1325", "href": "https://access.redhat.com/errata/RHSA-2011:1325", "type": "redhat", "title": "(RHSA-2011:1325) Moderate: evolution28-pango security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:46:53", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193"], "description": "Pango is a library used for the layout and rendering of internationalized\ntext.\n\nA buffer overflow flaw was found in HarfBuzz, an OpenType text shaping\nengine used in Pango. If a user loaded a specially-crafted font file with\nan application that uses Pango, it could cause the application to crash or,\npossibly, execute arbitrary code with the privileges of the user running\nthe application. (CVE-2011-3193)\n\nUsers of pango are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve this issue. After installing this\nupdate, you must restart your system or restart the X server for the update\nto take effect.\n", "modified": "2017-09-08T12:20:09", "published": "2011-09-21T04:00:00", "id": "RHSA-2011:1326", "href": "https://access.redhat.com/errata/RHSA-2011:1326", "type": "redhat", "title": "(RHSA-2011:1326) Moderate: pango security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:47:05", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193", "CVE-2011-3194"], "description": "Qt is a software toolkit that simplifies the task of writing and\nmaintaining GUI (Graphical User Interface) applications for the X Window\nSystem. HarfBuzz is an OpenType text shaping engine.\n\nA buffer overflow flaw was found in the harfbuzz module in Qt. If a user\nloaded a specially-crafted font file with an application linked against Qt,\nit could cause the application to crash or, possibly, execute arbitrary\ncode with the privileges of the user running the application.\n(CVE-2011-3193)\n\nA buffer overflow flaw was found in the way Qt handled certain gray-scale\nimage files. If a user loaded a specially-crafted gray-scale image file\nwith an application linked against Qt, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3194)\n\nUsers of Qt should upgrade to these updated packages, which contain\nbackported patches to correct these issues. All running applications linked\nagainst Qt libraries must be restarted for this update to take effect.\n", "modified": "2018-06-06T20:24:36", "published": "2011-09-21T04:00:00", "id": "RHSA-2011:1328", "href": "https://access.redhat.com/errata/RHSA-2011:1328", "type": "redhat", "title": "(RHSA-2011:1328) Moderate: qt security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:45:32", "bulletinFamily": "unix", "cvelist": ["CVE-2007-0242", "CVE-2011-3193"], "description": "Qt 4 is a software toolkit that simplifies the task of writing and\nmaintaining GUI (Graphical User Interface) applications for the X Window\nSystem. HarfBuzz is an OpenType text shaping engine.\n\nA flaw in the way Qt 4 expanded certain UTF-8 characters could be used to\nprevent a Qt 4 based application from properly sanitizing user input.\nDepending on the application, this could allow an attacker to perform\ndirectory traversal, or for web applications, a cross-site scripting (XSS)\nattack. (CVE-2007-0242)\n\nA buffer overflow flaw was found in the harfbuzz module in Qt 4. If a user\nloaded a specially-crafted font file with an application linked against Qt\n4, it could cause the application to crash or, possibly, execute arbitrary\ncode with the privileges of the user running the application.\n(CVE-2011-3193)\n\nUsers of Qt 4 should upgrade to these updated packages, which contain\nbackported patches to correct these issues. All running applications linked\nagainst Qt 4 libraries must be restarted for this update to take effect.\n", "modified": "2017-09-08T12:07:26", "published": "2011-09-21T04:00:00", "id": "RHSA-2011:1324", "href": "https://access.redhat.com/errata/RHSA-2011:1324", "type": "redhat", "title": "(RHSA-2011:1324) Moderate: qt4 security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:45:54", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193", "CVE-2011-3194"], "description": "Qt is a software toolkit that simplifies the task of writing and\nmaintaining GUI (Graphical User Interface) applications for the X Window\nSystem. HarfBuzz is an OpenType text shaping engine.\n\nA buffer overflow flaw was found in the harfbuzz module in Qt. If a user\nloaded a specially-crafted font file with an application linked against Qt,\nit could cause the application to crash or, possibly, execute arbitrary\ncode with the privileges of the user running the application.\n(CVE-2011-3193)\n\nA buffer overflow flaw was found in the way Qt handled certain gray-scale\nimage files. If a user loaded a specially-crafted gray-scale image file\nwith an application linked against Qt, it could cause the application to\ncrash or, possibly, execute arbitrary code with the privileges of the user\nrunning the application. (CVE-2011-3194)\n\nUsers of Qt should upgrade to these updated packages, which contain\nbackported patches to correct these issues. All running applications linked\nagainst Qt libraries must be restarted for this update to take effect.\n", "modified": "2018-06-06T20:24:23", "published": "2011-09-21T04:00:00", "id": "RHSA-2011:1323", "href": "https://access.redhat.com/errata/RHSA-2011:1323", "type": "redhat", "title": "(RHSA-2011:1323) Moderate: qt security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "debian": [{"lastseen": "2020-08-12T00:51:18", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193", "CVE-2011-3194"], "description": "Package : qt4-x11\nVersion : 4:4.6.3-4+squeeze2\nCVE ID : CVE-2011-3193 CVE-2011-3194\n\nCVE-2011-3193\n\n Check for buffer overflow in Lookup_MarkMarkPos that may cause crash\n in this function with certain fonts.\n\nCVE-2011-3194\n\n Fix tiff reader to handle TIFFTAG_SAMPLESPERPIXEL for grayscale\n images. The reader uses QImage::Format_Indexed8, but since the samples\n per pixel value this should be (non-existent) QImage::Format_Indexed16,\n causing memory corruption. The fix falls back to the &quot;normal&quot; way of\n reading tiff images.\n\n", "edition": 6, "modified": "2014-12-21T16:30:25", "published": "2014-12-21T16:30:25", "id": "DEBIAN:DLA-117-1:79FF6", "href": "https://lists.debian.org/debian-lts-announce/2014/debian-lts-announce-201412/msg00019.html", "title": "[SECURITY] [DLA 117-1] qt4-x11 security update", "type": "debian", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:25", "bulletinFamily": "unix", "cvelist": ["CVE-2013-0254", "CVE-2011-3193"], "edition": 1, "description": "### Background\n\nThe Qt toolkit is a comprehensive C++ application development framework.\n\n### Description\n\nMultiple vulnerabilities have been discovered in QtCore and QtGui. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker could entice a user to open a specially crafted file with an application linked against QtCore or QtGui, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition. Furthermore, a remote attacker might employ a specially crafted certificate to conduct man-in-the-middle attacks on SSL connections. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll QtCore users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-qt/qtcore-4.8.4-r2\"\n \n\nAll QtGui users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-qt/qtgui-4.8.4-r1\"\n \n\nPackages which depend on this library may need to be recompiled. Tools such as revdep-rebuild may assist in identifying some of these packages.", "modified": "2013-11-22T00:00:00", "published": "2013-11-22T00:00:00", "id": "GLSA-201311-14", "href": "https://security.gentoo.org/glsa/201311-14", "type": "gentoo", "title": "QtCore, QtGui: Multiple vulnerabilities", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2020-07-09T00:22:32", "bulletinFamily": "unix", "cvelist": ["CVE-2011-3193", "CVE-2011-3194", "CVE-2010-5076"], "description": "It was discovered that Qt did not properly handle wildcard domain names or \nIP addresses in the Common Name field of X.509 certificates. An attacker \ncould exploit this to perform a man in the middle attack to view sensitive \ninformation or alter encrypted communications. This issue only affected \nUbuntu 10.04 LTS. (CVE-2010-5076)\n\nA heap-based buffer overflow was discovered in the HarfBuzz module. If a \nuser were tricked into opening a crafted font file in a Qt application, \nan attacker could cause a denial of service or possibly execute arbitrary \ncode with the privileges of the user invoking the program. (CVE-2011-3193)\n\nIt was discovered that Qt did not properly handle greyscale TIFF images. \nIf a Qt application could be made to process a crafted TIFF file, an \nattacker could cause a denial of service. (CVE-2011-3194)", "edition": 5, "modified": "2012-07-11T00:00:00", "published": "2012-07-11T00:00:00", "id": "USN-1504-1", "href": "https://ubuntu.com/security/notices/USN-1504-1", "title": "Qt vulnerabilities", "type": "ubuntu", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}]}