(RHSA-2009:0476) Important: pango security update

2009-05-0800:00:00

access.redhat.com

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

73.9%

JSON

Pango is a library used for the layout and rendering of internationalized
text.

Will Drewry discovered an integer overflow flaw in Pango’s
pango_glyph_string_set_size() function. If an attacker is able to pass an
arbitrarily long string to Pango, it may be possible to execute arbitrary
code with the permissions of the application calling Pango. (CVE-2009-1194)

pango and evolution28-pango users are advised to upgrade to these updated
packages, which contain a backported patch to resolve this issue. After
installing this update, you must restart your system or restart the X
server for the update to take effect. Note: Restarting the X server closes
all open applications and logs you out of your session.

OSVersionArchitecturePackageVersionFilename
RedHat4ia64evolution28-pango-devel< 1.14.9-11.el4_7evolution28-pango-devel-1.14.9-11.el4_7.ia64.rpm
RedHatanyia64pango-devel< 1.6.0-14.4_7pango-devel-1.6.0-14.4_7.ia64.rpm
RedHat4x86_64evolution28-pango< 1.14.9-11.el4_7evolution28-pango-1.14.9-11.el4_7.x86_64.rpm
RedHat4srcevolution28-pango< 1.14.9-11.el4_7evolution28-pango-1.14.9-11.el4_7.src.rpm
RedHat5s390xpango-devel< 1.14.9-5.el5_3pango-devel-1.14.9-5.el5_3.s390x.rpm
RedHat4s390xevolution28-pango-devel< 1.14.9-11.el4_7evolution28-pango-devel-1.14.9-11.el4_7.s390x.rpm
RedHat4ppcevolution28-pango< 1.14.9-11.el4_7evolution28-pango-1.14.9-11.el4_7.ppc.rpm
RedHat5s390pango< 1.14.9-5.el5_3pango-1.14.9-5.el5_3.s390.rpm
RedHatanys390pango-devel< 1.6.0-14.4_7pango-devel-1.6.0-14.4_7.s390.rpm
RedHatanyi386pango< 1.6.0-14.4_7pango-1.6.0-14.4_7.i386.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	4	ia64	evolution28-pango-devel	< 1.14.9-11.el4_7	evolution28-pango-devel-1.14.9-11.el4_7.ia64.rpm
RedHat	any	ia64	pango-devel	< 1.6.0-14.4_7	pango-devel-1.6.0-14.4_7.ia64.rpm
RedHat	4	x86_64	evolution28-pango	< 1.14.9-11.el4_7	evolution28-pango-1.14.9-11.el4_7.x86_64.rpm
RedHat	4	src	evolution28-pango	< 1.14.9-11.el4_7	evolution28-pango-1.14.9-11.el4_7.src.rpm
RedHat	5	s390x	pango-devel	< 1.14.9-5.el5_3	pango-devel-1.14.9-5.el5_3.s390x.rpm
RedHat	4	s390x	evolution28-pango-devel	< 1.14.9-11.el4_7	evolution28-pango-devel-1.14.9-11.el4_7.s390x.rpm
RedHat	4	ppc	evolution28-pango	< 1.14.9-11.el4_7	evolution28-pango-1.14.9-11.el4_7.ppc.rpm
RedHat	5	s390	pango	< 1.14.9-5.el5_3	pango-1.14.9-5.el5_3.s390.rpm
RedHat	any	s390	pango-devel	< 1.6.0-14.4_7	pango-devel-1.6.0-14.4_7.s390.rpm
RedHat	any	i386	pango	< 1.6.0-14.4_7	pango-1.6.0-14.4_7.i386.rpm