Lucene search
K

26 matches found

securityvulns
securityvulns
added 2011/02/04 12:0 a.m.41 views

pango / libpango buffer overflow

Buffer overflow in pangoft2fontrenderboxglyph...

7.6CVSS3.9AI score0.18944EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2011/01/24 6:0 p.m.14 views

CVE-2011-0020

Heap-based buffer overflow in the pangoft2fontrenderboxglyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code...

7.6CVSS8.1AI score0.18944EPSS
Exploits1References15
CVE
CVE
added 2011/01/24 5:0 p.m.87 views

CVE-2011-0020

CVE-2011-0020: Heap-based buffer overflow in Pango’s FreeType2 path (pango_ft2_font_render_box_glyph in libpango, older than or equal to 1.28.3) can crash the target application or allow arbitrary code execution via a crafted font. Affected products include libpango packages built with the FreeTy...

7.6CVSS8.2AI score0.18944EPSS
Exploits1References15Affected Software2
Tenable Nessus
Tenable Nessus
added 2009/07/28 12:0 a.m.33 views

openSUSE Security Update : MozillaFirefox (MozillaFirefox-1135)

The MozillaFirefox 3.0.12 release fixes various bugs and some critical security issues. MFSA 2009-34 / CVE-2009-2462 / CVE-2009-2463 / CVE-2009-2464 / CVE-2009-2465 / CVE-2009-2466: Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in...

10CVSS7.6AI score0.1323EPSS
Exploits4References11
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.22 views

openSUSE Security Update : pango (pango-824)

This update of pango fixes a segfault in libpango that can be triggered by visiting websites. CVE-2009-1194 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update pango-824. The text description of...

6.8CVSS5AI score0.0413EPSS
Exploits2References2
Mozilla
Mozilla
added 2009/07/21 12:0 a.m.35 views

Heap/integer overflows in font glyph rendering libraries — Mozilla

oCERT security researcher Will Drewry reported a series of heap and integer overflow vulnerabilities which independently affected multiple font glyph rendering libraries. On Linux platforms libpango was susceptible to the vulnerabilities while on OS X CoreGraphics was similarly vulnerable. An...

10CVSS2.1AI score0.06329EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder