Launchpad.net

CVE 2011-0020

Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.

Related bugs and status

CVE-2011-0020 (Candidate) is related to these bugs:

Bug #696616: Heap corruption in font parsing with FreeType2 backend

		In	Importance	Status
696616	Heap corruption in font parsing with FreeType2 backend	pango1.0 (Ubuntu)	Medium	Fix Released
696616	Heap corruption in font parsing with FreeType2 backend	Pango	Medium	Fix Released
696616	Heap corruption in font parsing with FreeType2 backend	pango1.0 (Debian)	Unknown	Fix Released
696616	Heap corruption in font parsing with FreeType2 backend	pango1.0 (Ubuntu Maverick)	Undecided	Fix Released
696616	Heap corruption in font parsing with FreeType2 backend	pango1.0 (Ubuntu Natty)	Medium	Fix Released

Bug #700198: CVE-2009-0793

		In	Importance	Status
700198	CVE-2009-0793	lcms (Ubuntu)	Undecided	Fix Released
700198	CVE-2009-0793	openjdk-6 (Ubuntu)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6b18 (Ubuntu)	Low	Fix Released
700198	CVE-2009-0793	gimp (Ubuntu)	Undecided	Invalid
700198	CVE-2009-0793	ia32-libs (Ubuntu)	Low	Fix Released
700198	CVE-2009-0793	gimp (Ubuntu Hardy)	Undecided	Invalid
700198	CVE-2009-0793	ia32-libs (Ubuntu Hardy)	Low	Fix Released
700198	CVE-2009-0793	lcms (Ubuntu Hardy)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6 (Ubuntu Hardy)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6b18 (Ubuntu Hardy)	Undecided	Invalid
700198	CVE-2009-0793	gimp (Ubuntu Karmic)	Undecided	Invalid
700198	CVE-2009-0793	ia32-libs (Ubuntu Karmic)	Low	Fix Released
700198	CVE-2009-0793	lcms (Ubuntu Karmic)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6 (Ubuntu Karmic)	Undecided	Fix Released
700198	CVE-2009-0793	openjdk-6b18 (Ubuntu Karmic)	Undecided	Invalid
700198	CVE-2009-0793	gimp (Ubuntu Lucid)	Undecided	Invalid
700198	CVE-2009-0793	ia32-libs (Ubuntu Lucid)	Low	Fix Released
700198	CVE-2009-0793	lcms (Ubuntu Lucid)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6 (Ubuntu Lucid)	Undecided	Fix Released
700198	CVE-2009-0793	openjdk-6b18 (Ubuntu Lucid)	Low	Fix Released
700198	CVE-2009-0793	gimp (Ubuntu Maverick)	Undecided	Invalid
700198	CVE-2009-0793	ia32-libs (Ubuntu Maverick)	Low	Fix Released
700198	CVE-2009-0793	lcms (Ubuntu Maverick)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6 (Ubuntu Maverick)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6b18 (Ubuntu Maverick)	Low	Fix Released
700198	CVE-2009-0793	gimp (Ubuntu Natty)	Undecided	Invalid
700198	CVE-2009-0793	ia32-libs (Ubuntu Natty)	Low	Fix Released
700198	CVE-2009-0793	lcms (Ubuntu Natty)	Undecided	Fix Released
700198	CVE-2009-0793	openjdk-6 (Ubuntu Natty)	Low	Fix Released
700198	CVE-2009-0793	openjdk-6b18 (Ubuntu Natty)	Low	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-0020

Related bugs and status

Related bugs

References