CVE-2011-3193

Опубликовано: 16 июн. 2012

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.

Ссылки

http://cgit.freedesktop.org/harfbuzz.old/commit/?id=81c8ef785b079980ad5b46be4fe7c7bf156dbf65
Patch
Third Party Advisory
http://cgit.freedesktop.org/harfbuzz/commit/src/harfbuzz-gpos.c?id=da2c52abcd75d46929b34cad55c4fb2c8892bc08
Patch
Third Party Advisory
http://git.gnome.org/browse/pango/commit/pango/opentype/harfbuzz-gpos.c?id=a7a715480db66148b1f487528887508a7991dcd0
Patch
Vendor Advisory
http://lists.opensuse.org/opensuse-updates/2011-10/msg00007.html
Mailing List
Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2011-10/msg00008.html
Mailing List
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2011-1323.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2011-1324.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2011-1325.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2011-1326.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2011-1327.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2011-1328.html
Third Party Advisory
http://secunia.com/advisories/41537
Third Party Advisory
http://secunia.com/advisories/46117
Third Party Advisory
http://secunia.com/advisories/46118
Third Party Advisory
http://secunia.com/advisories/46119
Third Party Advisory
http://secunia.com/advisories/46128
Third Party Advisory
http://secunia.com/advisories/46371
Third Party Advisory
http://secunia.com/advisories/46410
Third Party Advisory
http://secunia.com/advisories/49895
Third Party Advisory
http://www.openwall.com/lists/oss-security/2011/08/22/6
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnome:pango:*:*:*:*:*:*:*:*

Версия до 1.25.1 (исключая)

cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

Версия до 4.7.4 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:6.1:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:4.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:4.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.04038

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2011-3193

ubuntu

около 13 лет назад

CVE-2011-3193

redhat

почти 14 лет назад

CVE-2011-3193

debian

около 13 лет назад

Heap-based buffer overflow in the Lookup_MarkMarkPos function in the H ...

GHSA-gw56-35qp-gch8

github

около 3 лет назад

ELSA-2011-1326

oracle-oval

почти 14 лет назад

ELSA-2011-1326: pango security update (MODERATE)

EPSS

Процентиль: 88%

0.04038

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-787