pango-1.14.9-8.AXS3.2
エラータID: AXSA:2011-15:01
Release date:
Sunday, January 30, 2011 - 13:24
Subject:
pango-1.14.9-8.AXS3.2
Affected Channels:
Asianux Server 3 for x86_64
Asianux Server 3 for x86
Severity:
High
Description:
Pango is a system for layout and rendering of internationalized text.
Security issues fixed with this release:
CVE-2011-0020
Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.
Solution:
Update packages.
CVEs:
CVE-2011-0020
Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.
Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.
Additional Info:
N/A
Download:
SRPMS
- pango-1.14.9-8.AXS3.2.src.rpm
MD5: 2a9102ef13e24e9e34e77733d71665dd
SHA-256: 5bfd160fde0c6dbd9c1c6baae10f39b15acbe0862c617ac7f3c9b99169e527bb
Size: 1.17 MB
Asianux Server 3 for x86
- pango-1.14.9-8.AXS3.2.i386.rpm
MD5: 66d2ed683c0eae46ac21269b50e55245
SHA-256: 4861a4e06437a70ba49fb65f8cc185a54a093cb08024c9f862773a4b4c7311d3
Size: 335.06 kB - pango-devel-1.14.9-8.AXS3.2.i386.rpm
MD5: ce0285b242c78fd51a5c0009a3b93e83
SHA-256: f939913c61d08b4244f22a3e246b8394cf9daa18045e30ca51c147653fa31b36
Size: 277.30 kB
Asianux Server 3 for x86_64
- pango-1.14.9-8.AXS3.2.x86_64.rpm
MD5: 25333dc4e4d94c850697298dfbb6836e
SHA-256: ed6d10e018a397745730279f1f7c8628aadaebe1eb312af2a971e12a11ca7941
Size: 339.10 kB - pango-devel-1.14.9-8.AXS3.2.x86_64.rpm
MD5: a207900e5ab43ded59f1ce9d61b73e7c
SHA-256: 19562042d290471adc5398f0d9468bbd55a5c9002202c6844150e189743ad357
Size: 278.00 kB
日本語