7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.186 Low
EPSS
Percentile
96.2%
Marc Schoenefeld discovered that Pango incorrectly handled certain Glyph
Definition (GDEF) tables. If a user were tricked into displaying text with
a specially-crafted font, an attacker could cause Pango to crash, resulting
in a denial of service. This issue only affected Ubuntu 8.04 LTS and 9.10.
(CVE-2010-0421)
Dan Rosenberg discovered that Pango incorrectly handled certain FT_Bitmap
objects. If a user were tricked into displaying text with a specially-
crafted font, an attacker could cause a denial of service or execute
arbitrary code with privileges of the user invoking the program. The
default compiler options for affected releases should reduce the
vulnerability to a denial of service. (CVE-2011-0020)
It was discovered that Pango incorrectly handled certain memory
reallocation failures. If a user were tricked into displaying text in a way
that would cause a reallocation failure, an attacker could cause a denial
of service or execute arbitrary code with privileges of the user invoking
the program. This issue only affected Ubuntu 9.10, 10.04 LTS and 10.10.
(CVE-2011-0064)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.10 | noarch | libpango1.0-0 | < 1.26.0-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | libpango1.0-0-dbg | < 1.26.0-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | libpango1.0-dev | < 1.26.0-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | libpango1.0-udeb | < 1.26.0-1ubuntu0.1 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpango1.0-0 | < 1.20.5-0ubuntu1.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpango1.0-0-dbg | < 1.20.5-0ubuntu1.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpango1.0-dev | < 1.20.5-0ubuntu1.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpango1.0-udeb | < 1.20.5-0ubuntu1.2 | UNKNOWN |
Ubuntu | 10.10 | noarch | gir1.0-pango-1.0 | < 1.28.2-0ubuntu1.1 | UNKNOWN |
Ubuntu | 10.10 | noarch | libpango1.0-0 | < 1.28.2-0ubuntu1.1 | UNKNOWN |