2 matches found
Scientific Linux Security Update : pango on SL3.x, SL4.x, SL5.x i386/x86_64
CVE-2010-0421 libpangoft2 segfaults on forged font files An input sanitization flaw, leading to an array index error, was found in the way the Pango font rendering library synthesized the Glyph Definition GDEF table from a font's character map and the Unicode property database. If an attacker...
libpangoft2 segfaults on forged font files
Array index error in the hbotlayoutbuildglyphclasses function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service application crash via a crafted font file, related to building a synthetic Glyph Definition aka GDEF table by usin...