// For flags

CVE-2011-0020

Pango Font Parsing - 'pangoft2-render.c' Heap Corruption

Severity Score

7.6
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

5
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.

Desbordamiento de búfer basado en memoria dinámica en la función pango_ft2_font_render_box_glyph en pango/pangoft2-render.c de libpango en Pango v1.28.3 y anteriores ,cuando el Backend FreeType2 está activo permite a atacantes remotos causar una denegación de servicio (cuelgue) o ejecutar código arbitrario a través de una a través de un archivo de fuentes manipulado, relacionado con una estuctura Glyph para un objeto de FT_Bitmap.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
Attack Vector
Network
Attack Complexity
High
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2010-12-07 CVE Reserved
  • 2011-01-18 First Exploit
  • 2011-01-24 CVE Published
  • 2024-08-06 CVE Updated
  • 2024-09-16 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
  • CWE-122: Heap-based Buffer Overflow
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Gnome
Search vendor "Gnome"
Pango
Search vendor "Gnome" for product "Pango"
<= 1.28.3
Search vendor "Gnome" for product "Pango" and version " <= 1.28.3"
-
Affected
Gnome
Search vendor "Gnome"
Pango
Search vendor "Gnome" for product "Pango"
1.28.0
Search vendor "Gnome" for product "Pango" and version "1.28.0"
-
Affected
Gnome
Search vendor "Gnome"
Pango
Search vendor "Gnome" for product "Pango"
1.28.1
Search vendor "Gnome" for product "Pango" and version "1.28.1"
-
Affected
Gnome
Search vendor "Gnome"
Pango
Search vendor "Gnome" for product "Pango"
1.28.2
Search vendor "Gnome" for product "Pango" and version "1.28.2"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.20
Search vendor "Pango" for product "Pango" and version "0.20"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.21
Search vendor "Pango" for product "Pango" and version "0.21"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.22
Search vendor "Pango" for product "Pango" and version "0.22"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.23
Search vendor "Pango" for product "Pango" and version "0.23"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.24
Search vendor "Pango" for product "Pango" and version "0.24"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.25
Search vendor "Pango" for product "Pango" and version "0.25"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
0.26
Search vendor "Pango" for product "Pango" and version "0.26"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.0
Search vendor "Pango" for product "Pango" and version "1.0"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.1
Search vendor "Pango" for product "Pango" and version "1.1"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.2
Search vendor "Pango" for product "Pango" and version "1.2"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.3
Search vendor "Pango" for product "Pango" and version "1.3"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.4
Search vendor "Pango" for product "Pango" and version "1.4"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.5
Search vendor "Pango" for product "Pango" and version "1.5"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.6
Search vendor "Pango" for product "Pango" and version "1.6"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.7
Search vendor "Pango" for product "Pango" and version "1.7"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.8
Search vendor "Pango" for product "Pango" and version "1.8"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.9
Search vendor "Pango" for product "Pango" and version "1.9"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.10
Search vendor "Pango" for product "Pango" and version "1.10"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.11
Search vendor "Pango" for product "Pango" and version "1.11"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.12
Search vendor "Pango" for product "Pango" and version "1.12"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.13
Search vendor "Pango" for product "Pango" and version "1.13"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.14
Search vendor "Pango" for product "Pango" and version "1.14"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.15
Search vendor "Pango" for product "Pango" and version "1.15"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.16
Search vendor "Pango" for product "Pango" and version "1.16"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.17
Search vendor "Pango" for product "Pango" and version "1.17"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.18
Search vendor "Pango" for product "Pango" and version "1.18"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.19
Search vendor "Pango" for product "Pango" and version "1.19"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.20
Search vendor "Pango" for product "Pango" and version "1.20"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.21
Search vendor "Pango" for product "Pango" and version "1.21"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.22
Search vendor "Pango" for product "Pango" and version "1.22"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.23
Search vendor "Pango" for product "Pango" and version "1.23"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.24
Search vendor "Pango" for product "Pango" and version "1.24"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.25
Search vendor "Pango" for product "Pango" and version "1.25"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.26
Search vendor "Pango" for product "Pango" and version "1.26"
-
Affected
Pango
Search vendor "Pango"
Pango
Search vendor "Pango" for product "Pango"
1.27
Search vendor "Pango" for product "Pango" and version "1.27"
-
Affected